Added few notes regarding clamav-unofficial-sigs

README.md

@@ -222,12 +222,13 @@ Usage
     * Interactive shells to `root` have timeout, so use `screen` for those longer administrative tasks
 * Rebooting the system after running this is highly recommended
 * The AIDE DB creation is made [asynchronously](https://docs.ansible.com/ansible/latest/playbook_guide/playbooks_async.html) and without polling, so let that finish before rebooting
-* You might want to get additional (unofficial) rules for ClamAV with [clamav-unofficial-sigs](https://github.com/extremeshok/clamav-unofficial-sigs). At least the following rulesets are freely available:
+* You might want to get additional (unofficial) rules for ClamAV with [clamav-unofficial-sigs](https://github.com/extremeshok/clamav-unofficial-sigs) (although see [#425](https://github.com/extremeshok/clamav-unofficial-sigs/issues/425)). At least the following rulesets are freely available:
     * [Sanesecurity](https://sanesecurity.com/usage/signatures/)
         * Porcupine ("The following databases are distributed by Sanesecurity, but produced by Porcupine Signatures")
         * bofhland ("The following databases are distributed by Sanesecurity, but produced by bofhland")
     * [Linux Malware Detect](https://www.rfxn.com/projects/linux-malware-detect/)
     * [InterServer](https://sigs.interserver.net)
+    * [URLhaus](https://urlhaus.abuse.ch/downloads/urlhaus.ndb)
 * **WARNING**: There is a hazard with immutable `loginuid` enabled in auditing in non-systemd systems (Slackware). See longer description of this in the [wiki](https://github.com/pyllyukko/harden.yml/wiki/PAM#pam_loginuidso).
 
 ### Tags