IPS Signature Database Update
| Name | ips.sig | |||
| Version | 2.1.580 | |||
| StoneOS | StoneOS 5.0R4F3.1 or above | |||
| Release Date | 2024-10-28 | |||
| New Signature (41) |
Rule ID | Rule Name | StonesOS | Detail |
| 105464 | Ransomware Activity: DNS Query to Cerber Domain | 5.5R5 or above | click for more information | |
| 105463 | Ransomware Activity: DNS Query to Cerber Domain | 5.5R5 or above | click for more information | |
| 332675 | Trojan Activity: PowerShell Base64 Encoded Content Command Common In Powershell Stagers M1 | 5.5R5 or above | click for more information | |
| 338477 | Yonyou NC word.docx Information Disclosure Vulnerability | 5.0R4 or above | click for more information | |
| 105462 | Ransomware Activity: DNS Query to Cerber Domain | 5.5R5 or above | click for more information | |
| 105459 | Trojan Activity: APT DarkHydrus DNS Lookup 18 | 5.5R5 or above | click for more information | |
| 338483 | Seeyon OA Background Form Imports Arbitrary File Write Vulnerability | 5.0R4 or above | click for more information | |
| 105461 | Ransomware Activity: DNS Query to Cerber Domain | 5.5R5 or above | click for more information | |
| 105471 | Ransomware Activity: Cerber Domain Observed | 5.5R5 or above | click for more information | |
| 332674 | Trojan Activity: Possible Darkhotel Higasia Downloader Checkin | 5.0R4 or above | click for more information | |
| 105475 | Ransomware Activity: Cerber Domain Observed | 5.5R5 or above | click for more information | |
| 338476 | Wanhu ezEIP productlist.aspx SQL Injection Vulnerability | 5.5R5 or above | click for more information | |
| 105467 | Trojan Activity: Inter Skimmer CnC Domain in DNS Lookup | 5.5R5 or above | click for more information | |
| 714744 | Trojan Activity: PowerShell Base64 Encoded Content Command Common In Powershell Stagers M2 | 5.5R5 or above | click for more information | |
| 105458 | Ransomware Activity: DNS Query to Cerber Domain | 5.5R5 or above | click for more information | |
| 338482 | DPTech VPN Arbitrary File Read Vulnerability | 5.0R4 or above | click for more information | |
| 105478 | Ransomware Activity: Win32/Teslacrypt Ransomware .onion domain (3kxwjihmkgibht2s) | 5.5R5 or above | click for more information | |
| 105460 | Trojan Activity: BrushaLoader CnC DNS Lookup | 5.5R5 or above | click for more information | |
| 105470 | Trojan Activity: BrushaLoader CnC DNS Lookup | 5.5R5 or above | click for more information | |
| 105474 | Ransomware Activity: Generic DNS Query for Suspicious CryptoWall (crpt) Domains | 5.5R5 or above | click for more information | |
| ...... | ||||
| Updated Signature (1) |
Rule ID | Rule Name | StonesOS | Detail |
| 337954 | WordPress Plugin Youzify SQL Injection Vulnerability (CVE-2022-1950) | 5.5R5 or above | Click here for more information | |