FBI and NSA Recommend the Use of Snort Intrusion Detection System(IDS)/Intrusion Prevention System(IPS)

Subject: FBI and NSA Recommend the Use of Snort Intrusion Detection System(IDS)/Intrusion Prevention System(IPS)

Good day from Singapore,

Please refer to the following article and cybersecurity advisory.

Article: FBI and NSA expose new Linux malware Drovorub, used by Russian
state hackers
Link:
https://www.zdnet.com/article/fbi-and-nsa-expose-new-linux-malware-drovorub-used-by-russian-state-hackers/

QUOTE:

"The joint security alert [PDF] contains guidance for running
Volatility, probing for file hiding behavior, Snort rules, and Yara
rules -- all helpful for deploying proper detection measures."

Cybersecurity Advisory: National Security Agency and Federal Bureau of
Investigation Joint Cybersecurity Advisory: Russian GRU 85th GTsSS
Deploys Previously Undisclosed Drovorub Malware, August 2020 Rev 1.0

Link:
https://media.defense.gov/2020/Aug/13/2002476465/-1/-1/0/CSA_DROVORUB_RUSSIAN_GRU_MALWARE_AUG_2020.PDF

Singaporean IT Consultant Mr. Turritopsis Dohrnii Teo En Ming is proud
to have deployed the open source Snort IDS/IPS in his pfSense firewall
network security appliance.




REFERENCES
==========

[1] https://lists.snort.org/pipermail/snort-users/2020-August/073961.html

Comments

Popular posts from this blog

[24 Mar 2022 Thursday] Erectile Dysfunction and Viagra

Patching Linux Kernel 5.5.7 to Add Support for AUFS Filesystem