IPS Signature Database Update

Name	ips.sig
Version	2.1.609
StoneOS	StoneOS 5.0R4F3.1 or above
Release Date	2025-06-03
New Signature (83)	Rule ID	Rule Name	StonesOS	Detail
	105538	Ransomware Activity: Ransomware/Cerber Onion Domain Lookup	5.5R5 or above	click for more information
	105525	Ransomware Activity: DNS Query to Cerber Domain	5.5R5 or above	click for more information
	338978	F5 BIG-IP Remote Code Execution Vulnerability (CVE-2025-31644)	5.5R5 or above	click for more information
	105507	Ransomware Activity: ABUSE.CH Locky C2 Domain	5.5R5 or above	click for more information
	332748	Ransomware Activity: Observed TrumpHead Ransomware CnC Domain	5.5R5 or above	click for more information
	105530	Trojan Activity: Turla DNS Lookup	5.5R5 or above	click for more information
	332727	Trojan Activity: BottleEK Plugin Check JS	5.5R5 or above	click for more information
	717062	.NET Remoting Protocol Detection	5.5R5 or above	click for more information
	332737	Trojan Activity: Malicious SSL Cert (Magecart)	5.5R5 or above	click for more information
	105521	Ransomware Activity: DNS Query to Cerber Domain	5.5R5 or above	click for more information
	714769	Ransomware Activity: Win32.Cerberus RAT Checkin Response	5.0R4 or above	click for more information
	105519	Ransomware Activity: DNS Query to Cerber Domain	5.5R5 or above	click for more information
	332744	Ransomware Activity: Aurora/OneKeyLocker Ransomware CnC Checkin	5.5R5 or above	click for more information
	105541	Ransomware Activity: DNS Query to Cerber Domain	5.5R5 or above	click for more information
	338985	DELMIA Apriso Unsafe .NET Object Deserialization Attempt Vulnerability (CVE-2024-3300)	5.0R4 or above	click for more information
	105510	Trojan Activity: ServHelper CnC Domain	5.5R5 or above	click for more information
	332723	Trojan Activity: Generic Email Account Phish	5.5R5 or above	click for more information
	335975	Microsoft Internet Explorer COM Objects Code Execution Vulnerability (CVE-2006-1186)	5.5R5 or above	click for more information
	105515	Trojan Activity: ServHelper CnC Domain	5.5R5 or above	click for more information
	332740	Trojan Activity: CrownAdPro CnC Activity M1	5.5R5 or above	click for more information
	......
Updated Signature (6)	Rule ID	Rule Name	StonesOS	Detail
	334895	SQL Injection Detection - Boolean Injection 3	5.5R5 or above	Click here for more information
	333644	Spring-boot-actuator-logview Library Directory Traversal Vulnerability (CVE-2021-21234)	5.0R4 or above	Click here for more information
	335456	WordPress Loginizer SQL Injection Vulnerability (CVE-2017-12650)	5.5R5 or above	Click here for more information
	336961	Django SQL Injection Vulnerability (CVE-2022-34265)	5.5R5 or above	Click here for more information
	334868	SQL Injection Detection - Suspicious Modification 5	5.5R5 or above	Click here for more information
	336615	Squid Proxy Unauthenticated HTTP Header Denial of Service Vulnerabilities Vulnerability (CVE-2021-31806)	5.5R5 or above	Click here for more information