Backdoor.StealthFalcon
Description
This indicates that a system on your network is infected by the Stealth Falcon malware.
Stealth Falcon is a PowerShell-based backdoor that provides access to remote attackers.
Affected Products
Any unprotected Windows system is vulnerable.
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Monitor the traffic from that network for any suspicious activity.
Use Anti-Virus software to scan and clean the system.
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |