virus logo Intrusion Prevention

Fareit.Botnet

description-logoDescription

This indicates that a system might be infected by Fareit botnet.
Fareit, also known as Pony and GlitchPOS, is a Windows malware that steals password credentials and credit card data. All botnet signatures from FortiOS 5.6 onwards are under IPS, and have their default action set to "Block".

affected-products-logoAffected Products

Any unprotected Windows system is vulnerable.

Impact logoImpact

System Compromise: Remote attackers can gain control of vulnerable systems.

recomended-action-logoRecommended Actions

If required, the signature's action can be set to "Block".
Use Anti-Virus software to scan and clean the system.

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date Version Status Detail
2020-11-10 16.959
Modified
 Sig Added

References

https://www.fortinet.com/blog/threat-research/new-fareit-variant-analysis.html
ID 37807
Created Jan 16, 2014
Updated Nov 03, 2025
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon
Default Action drop
Active
Affected OS Windows
Affected App Other
Profile Type Malware