IPS Signature Database Update

Name	ips.sig
Version	2.1.574
StoneOS	StoneOS 5.0R4F3.1 or above
Release Date	2024-09-18
New Signature (26)	Rule ID	Rule Name	StonesOS	Detail
	105393	Ransomware Activity: DNS Query to Cerber Domain	5.5R5 or above	click for more information
	105391	Ransomware Activity: CryptoWall .onion Proxy Domain (7oqnsnzwwnm6zb7y)	5.5R5 or above	click for more information
	332585	Ransomware Activity: Jaff Ransomware Checkin	5.5R5 or above	click for more information
	105382	Ransomware Activity: Ransomware/Cerber Onion Domain Lookup	5.5R5 or above	click for more information
	338407	Jinher OA C6 jQueryUploadify.ashx SQL Injection Vulnerability	5.5R5 or above	click for more information
	105396	Ransomware Activity: Ransomware Locky .onion Payment Domain (mphtadhci5mrdlju)	5.5R5 or above	click for more information
	105394	Ransomware Activity: DNS Query to Cerber Domain	5.5R5 or above	click for more information
	105392	Ransomware Activity: TeslaCrypt/AlphaCrypt Variant .onion Proxy Domain	5.5R5 or above	click for more information
	105390	Ransomware Activity: Ransomware/Cerber Onion Domain Lookup	5.5R5 or above	click for more information
	105381	Ransomware Activity: DNS Query to Cerber Domain	5.5R5 or above	click for more information
	338406	Jinher OA C6 GetSqlData.aspx SQL Injection Vulnerability	5.0R4 or above	click for more information
	338413	Apache Ofbiz Server-Side Request Forgery Vulnerability (CVE-2024-45507)	5.5R5 or above	click for more information
	105389	Ransomware Activity: Ransomware/Cerber Onion Domain Lookup	5.5R5 or above	click for more information
	105380	Ransomware Activity: Ransomware Locky .onion Payment Domain (5n7y4yihirccftc5)	5.5R5 or above	click for more information
	338411	Apache Ofbiz Unauthenticated Remote Code Execution Vulnerability (CVE-2024-45195)	5.5R8 or above	click for more information
	338409	Traccar GPS Path Traveral Vulnerability (CVE-2024-24809)	5.0R4 or above	click for more information
	105385	Ransomware Activity: TeslaCrypt/AlphaCrypt Variant .onion Proxy Domain	5.5R5 or above	click for more information
	338405	Ivanti-Virtual-Traffic-Manager Authentication Bypass Vulnerability (CVE-2024-7593)	5.0R4 or above	click for more information
	338412	Apache Ofbiz Server-Side Request Forgery Vulnerability (CVE-2024-45507)	5.5R8 or above	click for more information
	105388	Ransomware Activity: Win32/Teslacrypt .onion Proxy Domain	5.5R5 or above	click for more information
	......
Updated Signature (1)	Rule ID	Rule Name	StonesOS	Detail
Updated Signature (1)	338403	Apache Ofbiz Unauthenticated Remote Code Execution Vulnerability (CVE-2024-45195)	5.5R5 or above	Click here for more information