cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements

Step-by-Step Configuration and Troubleshooting Best Practices for the NGFW, NGIPS and AMP Technologies A Visual Guide to the Cisco Firepower Threat Defense (FTD)
1036
Views
0
Helpful
2
Replies
Highlighted
Beginner

IPS Critical Alert - Botnet

Hi all,

We received a number of alerts from our IPS last night with high severity, signature name "Rustock Botnet". It may be just a false positive, but I would appreciate some assistance if anyone could shed further light on the alert (attached).

Thanks.

Everyone's tags (5)
2 REPLIES 2
Beginner

IPS Critical Alert - Botnet

Hi Nix-patheon,

I am pasting a link which might give you insight about "Rustock Botnet"

http://en.wikipedia.org/wiki/Rustock_botnet

Regards and Thanx.

Anim Saxena

*Rate helpful posts*

Beginner

IPS Critical Alert - Botnet

Hi,

Here is some additonal technical information about Rustock botnet along with links to vendor responses.

http://tools.cisco.com/security/center/viewAlert.x?alertId=18294