{"id":6585,"date":"2017-02-10T12:00:29","date_gmt":"2017-02-10T20:00:29","guid":{"rendered":"http:\/\/www.palada.net\/index.php\/2017\/02\/10\/news-408\/"},"modified":"2017-02-10T12:00:29","modified_gmt":"2017-02-10T20:00:29","slug":"news-408","status":"publish","type":"post","link":"http:\/\/www.palada.net\/index.php\/2017\/02\/10\/news-408\/","title":{"rendered":"TippingPoint Threat Intelligence and Zero-Day Coverage \u2013 Week of February 6, 2017"},"content":{"rendered":"<p><img loading=\"lazy\" decoding=\"async\" width=\"300\" height=\"205\" src=\"http:\/\/blog.trendmicro.com\/wp-content\/uploads\/2016\/04\/TP-WeeklyBlog-300x205-300x205.jpg\" class=\"attachment-medium size-medium wp-post-image\" alt=\"\" style=\"float: left; margin-right: 5px;\" srcset=\"http:\/\/blog.trendmicro.com\/wp-content\/uploads\/2016\/04\/TP-WeeklyBlog-300x205.jpg 300w, http:\/\/blog.trendmicro.com\/wp-content\/uploads\/2016\/04\/TP-WeeklyBlog-300x205-125x85.jpg 125w\" sizes=\"auto, (max-width: 300px) 100vw, 300px\" \/><\/p>\n<p>A lot has changed since 2002, the first year I attended the RSA Conference. First, the event was being held in San Jose, California, which is a huge difference from the massive Moscone Center in San Francisco. Second, instead of the Monday night reception format as it is now with vendors staffing their booths for a couple of hours while appetizers and drinks are passed around, we were treated to an opening reception with one of my favorite bands \u2013 Cheap Trick. They rocked the place and even changed up their lyrics to the song \u201cSurrender\u201d to cater to the security crowd. While bands no longer jam with us at RSA, we will not be surrendering our spot at the conference. If you plan on attending, please come by the Trend Micro booth. We will be at the South Hall of the Moscone Center in booth #1107. We are also speaking throughout the event. You can learn more about our presence at the RSA Conference <a href=\"http:\/\/blog.trendmicro.com\/go-beyond-next-gen-xgen-rsa-2017\/\">here<\/a>.<\/p>\n<p><strong>Infusing Machine Learning into Next-Generation Intrusion Prevention<\/strong><\/p>\n<p>Earlier this week, we <a href=\"http:\/\/newsroom.trendmicro.com\/press-release\/commercial\/trend-micro-tippingpoint-powered-xgen-security-first-infuse-machine-learnin\">announced<\/a> the availability of machine learning capabilities that help TippingPoint Next-Generation Intrusion Prevention System (NGIPS) solutions detect and block in real-time. Get the details <a href=\"http:\/\/blog.trendmicro.com\/achieving-real-time-threat-prevention-tippingpoint-machine-learning\/\">here<\/a>.<\/p>\n<p><strong>Microsoft Patch Tuesday Update<\/strong><\/p>\n<p>This week\u2019s Digital Vaccine (DV) package includes coverage for the Microsoft Security Bulletins released on or before February 14, 2017. The following table maps Digital Vaccine filters to the Microsoft Security Bulletins:<\/p>\n<div class=\"lightTable\">\n<table width=\"554\">\n<tbody>\n<tr>\n<td width=\"140\"><strong>Bulletin #<\/strong><\/td>\n<td width=\"183\"><strong>CVE #<\/strong><\/td>\n<td width=\"220\"><strong>Digital Vaccine Filter #<\/strong><\/td>\n<\/tr>\n<tr>\n<td width=\"140\">MS17-010<\/td>\n<td width=\"183\">CVE-2017-0016<\/td>\n<td width=\"220\">26893<\/td>\n<\/tr>\n<\/tbody>\n<\/table><\/div>\n<p>&nbsp;<\/p>\n<p><strong>Zero-Day Filters<\/strong><\/p>\n<p>There are 42 new zero-day filters covering two vendors in this week\u2019s Digital Vaccine (DV) package. A number of existing filters in this week\u2019s DV package were modified to update the filter description, update specific filter deployment recommendation, increase filter accuracy and\/or optimize performance. You can browse the list of <a href=\"http:\/\/www.zerodayinitiative.com\/advisories\/published\/\">published advisories<\/a> and <a href=\"http:\/\/www.zerodayinitiative.com\/advisories\/upcoming\/\">upcoming advisories<\/a> on the <a href=\"http:\/\/www.zerodayinitiative.com\/\">Zero Day Initiative<\/a> website.<\/p>\n<p><strong><em>Microsoft (1)<\/em><\/strong><\/p>\n<table>\n<tbody>\n<tr>\n<td width=\"20px\"><\/td>\n<td>\n<ul>\n<li>26885: ZDI-CAN-4271-4273: Zero Day Initiative Vulnerability (Microsoft Windows)<strong><em>\u00a0<\/em><\/strong><\/li>\n<\/ul>\n<\/td>\n<\/tr>\n<tr>\n<td height=\"10px\"><\/td>\n<td><\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n<p><strong><em>Trend Micro (41)<\/em><\/strong><\/p>\n<table>\n<tbody>\n<tr>\n<td width=\"20px\"><\/td>\n<td>\n<ul>\n<li>26774: ZDI-CAN-4253: Zero Day Initiative Vulnerability (Trend Micro InterScan Web Security VA)<\/li>\n<li>26775: ZDI-CAN-4254: Zero Day Initiative Vulnerability (Trend Micro InterScan Web Security VA)<\/li>\n<li>26776: ZDI-CAN-4255: Zero Day Initiative Vulnerability (Trend Micro InterScan Web Security VA)<\/li>\n<li>26777: ZDI-CAN-4256: Zero Day Initiative Vulnerability (Trend Micro InterScan Web Security VA)<\/li>\n<li>26778: ZDI-CAN-4257: Zero Day Initiative Vulnerability (Trend Micro InterScan Web Security VA)<\/li>\n<li>26779: ZDI-CAN-4258: Zero Day Initiative Vulnerability (Trend Micro InterScan Web Security VA)<\/li>\n<li>26780: ZDI-CAN-4260: Zero Day Initiative Vulnerability (Trend Micro InterScan Web Security VA)<\/li>\n<li>26781: ZDI-CAN-4261: Zero Day Initiative Vulnerability (Trend Micro InterScan Web Security VA)<\/li>\n<li>26786: ZDI-CAN-4263: Zero Day Initiative Vulnerability (Trend Micro InterScan Web Security VA)<\/li>\n<li>26787: ZDI-CAN-4264: Zero Day Initiative Vulnerability (Trend Micro InterScan Web Security VA)<\/li>\n<li>26788: ZDI-CAN-4265: Zero Day Initiative Vulnerability (Trend Micro InterScan Web Security VA)<\/li>\n<li>26789: ZDI-CAN-4266: Zero Day Initiative Vulnerability (Trend Micro InterScan Web Security VA)<\/li>\n<li>26790: ZDI-CAN-4267: Zero Day Initiative Vulnerability (Trend Micro InterScan Web Security VA)<\/li>\n<li>26791: ZDI-CAN-4268: Zero Day Initiative Vulnerability (Trend Micro InterScan Web Security VA)<\/li>\n<li>26792: ZDI-CAN-4269: Zero Day Initiative Vulnerability (Trend Micro InterScan Web Security VA)<\/li>\n<li>26799: ZDI-CAN-4270: Zero Day Initiative Vulnerability (Trend Micro InterScan Web Security VA)<\/li>\n<li>26801: ZDI-CAN-4276: Zero Day Initiative Vulnerability (Trend Micro InterScan Web Security VA)<\/li>\n<li>26802: ZDI-CAN-4280: Zero Day Initiative Vulnerability (Trend Micro InterScan Web Security VA)<\/li>\n<li>26803: ZDI-CAN-4281: Zero Day Initiative Vulnerability (Trend Micro Data Loss Prevention Manager)<\/li>\n<li>26805: ZDI-CAN-4296: Zero Day Initiative Vulnerability (Trend Micro Data Loss Prevention Manager)<\/li>\n<li>26806: ZDI-CAN-4295: Zero Day Initiative Vulnerability (Trend Micro InterScan Web Security VA)<\/li>\n<li>26807: ZDI-CAN-4298: Zero Day Initiative Vulnerability (Trend Micro InterScan Web Security VA)<\/li>\n<li>26808: ZDI-CAN-4299: Zero Day Initiative Vulnerability (Trend Micro InterScan Web Security VA)<\/li>\n<li>26809: ZDI-CAN-4324: Zero Day Initiative Vulnerability (Trend Micro InterScan Web Security VA)<\/li>\n<li>26810: ZDI-CAN-4325: Zero Day Initiative Vulnerability (Trend Micro InterScan Web Security VA)<\/li>\n<li>26812: ZDI-CAN-4326: Zero Day Initiative Vulnerability (Trend Micro InterScan Web Security VA)<\/li>\n<li>26814: ZDI-CAN-4282: Zero Day Initiative Vulnerability (Trend Micro Data Loss Prevention Manager)<\/li>\n<li>26819: ZDI-CAN-4328: Zero Day Initiative Vulnerability (Trend Micro Data Loss Prevention Manager)<\/li>\n<li>26820: ZDI-CAN-4333: Zero Day Initiative Vulnerability (Trend Micro Deep Discovery Email Inspector)<\/li>\n<li>26821: ZDI-CAN-4346: Zero Day Initiative Vulnerability (Trend Micro Deep Discovery Email Inspector)<\/li>\n<li>26822: ZDI-CAN-4347: Zero Day Initiative Vulnerability (Trend Micro Deep Discovery Email Inspector)<\/li>\n<li>26823: ZDI-CAN-4348: Zero Day Initiative Vulnerability (Trend Micro Deep Discovery Email Inspector)<\/li>\n<li>26824: ZDI-CAN-4349: Zero Day Initiative Vulnerability (Trend Micro Deep Discovery Email Inspector)<\/li>\n<li>26825: ZDI-CAN-4350: Zero Day Initiative Vulnerability (Trend Micro Deep Discovery Email Inspector)<\/li>\n<li>26826: ZDI-CAN-4351: Zero Day Initiative Vulnerability (Trend Micro Deep Discovery Email Inspector)<\/li>\n<li>26827: ZDI-CAN-4366: Zero Day Initiative Vulnerability (Trend Micro Deep Discovery Email Inspector)<\/li>\n<li>26828: ZDI-CAN-4375: Zero Day Initiative Vulnerability (Trend Micro InterScan Web Security VA)<\/li>\n<li>26829: ZDI-CAN-4417: Zero Day Initiative Vulnerability (Trend Micro Deep Discovery Email Inspector)<\/li>\n<li>26830: ZDI-CAN-4418: Zero Day Initiative Vulnerability (Trend Micro Deep Discovery Email Inspector)<\/li>\n<li>26831: ZDI-CAN-4274: Zero Day Initiative Vulnerability (Trend Micro Data Loss Prevention Manager)<\/li>\n<li>26886: ZDI-CAN-4275: Zero Day Initiative Vulnerability (Trend Micro InterScan Web Security VA)<\/li>\n<\/ul>\n<\/td>\n<\/tr>\n<tr>\n<td height=\"10px\"><\/td>\n<td><\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n<p><strong>Missed Last Week\u2019s News?<\/strong><\/p>\n<p>Catch up on last week\u2019s news in my <a href=\"http:\/\/blog.trendmicro.com\/tippingpoint-threat-intelligence-zero-day-coverage-week-january-30-2017\/\">weekly recap<\/a>.<\/p>\n<p><a href=\"http:\/\/blog.trendmicro.com\/tippingpoint-threat-intelligence-zero-day-coverage-week-february-6-2017\/\" target=\"bwo\" >http:\/\/feeds.trendmicro.com\/TrendMicroSimplySecurity<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p><img loading=\"lazy\" decoding=\"async\" width=\"300\" height=\"205\" src=\"http:\/\/blog.trendmicro.com\/wp-content\/uploads\/2016\/04\/TP-WeeklyBlog-300x205-300x205.jpg\" class=\"attachment-medium size-medium wp-post-image\" alt=\"\" style=\"float: left; margin-right: 5px;\" srcset=\"http:\/\/blog.trendmicro.com\/wp-content\/uploads\/2016\/04\/TP-WeeklyBlog-300x205.jpg 300w, http:\/\/blog.trendmicro.com\/wp-content\/uploads\/2016\/04\/TP-WeeklyBlog-300x205-125x85.jpg 125w\" sizes=\"auto, (max-width: 300px) 100vw, 300px\" \/>A lot has changed since 2002, the first year I attended the RSA Conference. First, the event was being held in San Jose, California, which is a huge difference from the massive Moscone Center in San Francisco. Second, instead of the Monday night reception format as it is now with vendors staffing their booths for&#8230;<\/p>\n","protected":false},"author":4,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"colormag_page_container_layout":"default_layout","colormag_page_sidebar_layout":"default_layout","footnotes":""},"categories":[10378,10413],"tags":[10384,714,10415],"class_list":["post-6585","post","type-post","status-publish","format-standard","hentry","category-security","category-trendmicro","tag-network","tag-security","tag-zero-day-initiative"],"_links":{"self":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/6585","targetHints":{"allow":["GET"]}}],"collection":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/comments?post=6585"}],"version-history":[{"count":0,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/posts\/6585\/revisions"}],"wp:attachment":[{"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/media?parent=6585"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/categories?post=6585"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/www.palada.net\/index.php\/wp-json\/wp\/v2\/tags?post=6585"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}