all InfoSec news
SigmaHQ Rules Release Highlights — r2024–01–29
Jan. 29, 2024, 7:20 p.m. | MalBot
Malware Analysis, News and Indicators - Latest topics malware.news
SigmaHQ Rules Release Highlights — r2024–01–29
https://github.com/SigmaHQ/sigma/releases/tag/r2024-01-29Sigma Rule Packages for 29–01–2024 are released and available for download. This release saw the addition of 7 new rules, 30 rule updates and 11 rule fixes by 10+ contributors.
New Rules
Some highlights for the newer rules include new Pikabot rule to detect loading of DLL with uncommon extensions
title: Pikabot Fake DLL Extension Execution Via Rundll32.EXE
id: 1bf0ba65-9a39-42a2-9271-31d31bf2f0bf
status: experimental
description: |
Detects specific process tree behavior linked to …
article conversation link medium people release rules story the conversation
More from malware.news / Malware Analysis, News and Indicators - Latest topics
Jobs in InfoSec / Cybersecurity
Embedded VSOC Analyst
@ Sibylline Ltd | Australia, Australia
Cloud Security Platform Engineer
@ Google | London, UK; United Kingdom
Senior Associate Cybersecurity GRC - FedRAMP
@ Workday | USA, VA, McLean
Senior Incident Response Consultant, Mandiant, Google Cloud
@ Google | Mexico; Colombia
Cyber Software Engineering, Advisor
@ Peraton | Fort Gordon, GA, United States
Cloud Security Architect (Federal)
@ Moveworks | Remote, USA