BlackEnergy.v3.Botnet
Description
This indicates that a system might be infected by Sandworm Botnet.
Affected Products
Any unprotected Windows system is vulnerable.
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
If required, the signature's action can be set to "Block".
Note: This signature requires "SSL Inspection" in FortiOS 5.0 and above to detect the application.
Please use Anti-Virus software to scan and clean the infected computer.
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |