New Filters:
45123: HTTP: Trojan.Linux.Dosiabot.A Runtime Detection
- IPS Version: 3.9.5 and after.
- TPS Version: 5.2.2 and after.
- vTPS Version: 5.2.2 and after.
- Category: Virus
- Severity: High
- Description: This filter is deployed in the Malware Filter Package.
- Deployments:
- Deployment: Default (Block / Notify)
- Deployment: Performance-Optimized (Disabled)
- Release Date: November 26, 2024
45124: HTTP: Trojan.MSIL.ElizaRAT.A Runtime Detection (System Info Exfiltration, Desktop/Laptop)
- IPS Version: 3.9.5 and after.
- TPS Version: 5.2.2 and after.
- vTPS Version: 5.2.2 and after.
- Category: Virus
- Severity: High
- Description: This filter is deployed in the Malware Filter Package.
- Deployment: Not enabled by default in any deployment.
- Release Date: November 26, 2024
45126: HTTP: Trojan.MSIL.ElizaRAT.A Runtime Detection (Notification of File Execution)
- IPS Version: 3.9.5 and after.
- TPS Version: 5.2.2 and after.
- vTPS Version: 5.2.2 and after.
- Category: Virus
- Severity: High
- Description: This filter is deployed in the Malware Filter Package.
- Deployment: Not enabled by default in any deployment.
- Release Date: November 26, 2024
45127: HTTP: Backdoor.PHP.LunarPeekWS.A Runtime Detection
- IPS Version: 3.9.5 and after.
- TPS Version: 5.2.2 and after.
- vTPS Version: 5.2.2 and after.
- Category: Virus
- Severity: High
- Description: This filter is deployed in the Malware Filter Package.
- Deployments:
- Deployment: Default (Block / Notify)
- Deployment: Performance-Optimized (Disabled)
- References:
- Common Vulnerabilities and Exposures: CVE-2024-0012, CVE-2024-9474
- Release Date: November 26, 2024
45128: UDP: Backdoor.Win64.LightSpy.A Runtime Detection
- IPS Version: 3.9.5 and after.
- TPS Version: 5.2.2 and after.
- vTPS Version: 5.2.2 and after.
- Category: Virus
- Severity: High
- Description: This filter is deployed in the Malware Filter Package.
- Deployments:
- Deployment: Default (Block / Notify)
- Deployment: Performance-Optimized (Disabled)
- Release Date: November 26, 2024
45130: SMB: Ransomware.Win32.VxugcryLocker.A Runtime Detection
- IPS Version: 3.9.5 and after.
- TPS Version: 5.2.2 and after.
- vTPS Version: 5.2.2 and after.
- Category: Virus
- Severity: High
- Description: This filter is deployed in the Malware Filter Package.
- Deployments:
- Deployment: Default (Block / Notify)
- Deployment: Performance-Optimized (Disabled)
- Release Date: November 26, 2024
45135: HTTP: Trojan.Linux.Ngioweb.YXEKN Runtime Detection
- IPS Version: 3.9.5 and after.
- TPS Version: 5.2.2 and after.
- vTPS Version: 5.2.2 and after.
- Category: Virus
- Severity: High
- Description: This filter is deployed in the Malware Filter Package.
- Deployments:
- Deployment: Default (Block / Notify)
- Deployment: Performance-Optimized (Disabled)
- Release Date: November 26, 2024
45136: TCP: Backdoor.MSIL.HyperXBoom.A Runtime Detection
- IPS Version: 3.9.5 and after.
- TPS Version: 5.2.2 and after.
- vTPS Version: 5.2.2 and after.
- Category: Virus
- Severity: High
- Description: This filter is deployed in the Malware Filter Package.
- Deployments:
- Deployment: Default (Block / Notify)
- Deployment: Performance-Optimized (Disabled)
- Release Date: November 26, 2024
45137: HTTP: Trojan.MSIL.ElizaRAT.B Runtime Detection (System Info Exfiltration)
- IPS Version: 3.9.5 and after.
- TPS Version: 5.2.2 and after.
- vTPS Version: 5.2.2 and after.
- Category: Virus
- Severity: High
- Description: This filter is deployed in the Malware Filter Package.
- Deployments:
- Deployment: Default (Block / Notify)
- Deployment: Performance-Optimized (Disabled)
- Release Date: November 26, 2024
45138: HTTP: Trojan.MSIL.ElizaRAT.B Runtime Detection (Update for Payload Execution)
- IPS Version: 3.9.5 and after.
- TPS Version: 5.2.2 and after.
- vTPS Version: 5.2.2 and after.
- Category: Virus
- Severity: High
- Description: This filter is deployed in the Malware Filter Package.
- Deployments:
- Deployment: Default (Block / Notify)
- Deployment: Performance-Optimized (Disabled)
- Release Date: November 26, 2024
Modified Filters (logic changes):
* = Enabled in Default deployments
* 38927: TLS: Trojan.MSIL.Asyncrat.A (SSL/TLS Self-signed Certificate)
- IPS Version: 3.7.0 and after.
- TPS Version: 4.0.0 and after.
- vTPS Version: 4.0.1 and after.
- Detection logic updated.
- Release Date: February 23, 2021
- Last Modified Date: November 26, 2024
44040: TCP: Backdoor.Linux.NerbianRAT.A Runtime Detection
- IPS Version: 3.9.5 and after.
- TPS Version: 5.2.2 and after.
- vTPS Version: 5.2.2 and after.
- Detection logic updated.
- Release Date: March 26, 2024
- Last Modified Date: November 26, 2024
* 44497: TLS: Backdoor.MacOS.LightSpy.A Runtime Detection (Self-signed SSL/TLS Certificate)
- IPS Version: 3.9.5 and after.
- TPS Version: 5.2.2 and after.
- vTPS Version: 5.2.2 and after.
- Name changed from "44497: TLS: Backdoor.MacOS.LightSpy.A Runtime Detection (Self-signed Certificate)".
- Description updated.
- Detection logic updated.
- Vulnerability references updated.
- Release Date: July 09, 2024
- Last Modified Date: November 26, 2024
Modified Filters (metadata changes only): None
Removed Filters: None
|
Welcome to the future of Business Support! I'm Trend Companion, your
AI assistant ready to streamline your experience.
Log in for your personalized support!
Chat with Trend Companion for quick answers, or submit a case for
detailed troubleshooting.