alert dns $HOME_NET any -> any any (msg:"ET POLICY possible OnePlus? phone data leakage DNS"; dns_query; content:"open.oneplus.net"; nocase; isdataat:!1,relative; metadata: former_category POLICY; reference:url,www.chrisdcmoore.co.uk/post/oneplus-analytics/; classtype:policy-violation; sid:2025133; rev:3; metadata:affected_product Android, attack_target Mobile_Client, deployment Perimeter, tag Android, signature_severity Minor, created_at 2017_12_06, malware_family Android_OnePlus, updated_at 2017_12_06;)

Added 2017-12-07 16:36:02 UTC


alert dns $HOME_NET any -> any any (msg:"ET POLICY possible OnePlus? phone data leakage DNS"; dns_query; content:"open.oneplus.net"; nocase; isdataat:!1,relative; metadata: former_category POLICY; reference:url,www.chrisdcmoore.co.uk/post/oneplus-analytics/; classtype:trojan-activity; sid:2025133; rev:2; metadata:affected_product Android, attack_target Mobile_Client, deployment Perimeter, tag Android, signature_severity Minor, created_at 2017_12_06, malware_family Android_OnePlus, updated_at 2017_12_06;)

Added 2017-12-06 16:36:39 UTC


Topic revision: r1 - 2017-12-07 - TWikiGuest
 
This site is powered by the TWiki collaboration platform Powered by Perl This site is powered by the TWiki collaboration platformCopyright © Emerging Threats