Cisco Talos released the newest SNORTⓇ ruleset this morning.
Tuesday's rule update provides multiple forms of protection against the exploitation of high-severity vulnerabilities in Cisco's Business Process Automation (BPA) application and Web Security Appliance (WSA). An adversary could take advantage of these issues to access sensitive data or take over a targeted system.
Here's a full breakdown of today's release:
Shared object rules | Modified shared object rules | New rules | Modified rules |
---|---|---|---|
0 | 2 | 1 | 72 |
Talos has added and modified multiple rules in the malware-backdoor, os-other, server-apache, server-other and SQL rule sets to provide coverage for emerging threats from these technologies.