Skip to content
Cyfyx
Toggle menu
  • Solutions
    • Advanced Endpoint Protection
    • Secure Email Gateway
    • Secure Internet Gateway
    • Endpoint Detection and Response
    • Managed Detection and Response
  • Services
  • Partners
  • Company
    • About Us
    • Contact Us
WHAT IS POWERPOOL GROUP?

PowerPool is a new threat group discovered by ESET’s research team. The group seems to have various victims across the world, and was directly related to the newly created malware that uses a newly publicly released 0 day exploit.

WHAT IS POWERPOOL’S MALWARE?

PowerPool’s malware functions as a backdoor to the attacked system. Allowing the attacker to remotely control and execute malicious programs on the victim’s machine, along with stealing private information located on the victim’s machine.

WHO IS AT RISK FROM ATTACK BY POWERPOOL’S MALWARE?

PowerPool’s malware affects all Windows 10 systems prior to the ALPC 0 day quick patch update. Which means most Windows 10 machines today are vulnerable and can be targeted by the malware.

HOW CAN POWERPOOL’S MALWARE BE USED BY CYBER CRIMINALS?

PowerPool’s malware can be used by attackers to achieve multiple capabilities on the attacked machine, such as downloading more malicious code and running it on the attacked machine, control various functionalities of the operating system, taking snapshots of the user’s desktop, and stealing private files and information stored on the attacked system.

DOES ENSILO PROTECT AGAINST POWERPOOL’S MALWARE?

enSilo protects against infections by PowerPool’s malware. The malware is comprised of two main stage. The first stage aims to infect the system and download the second stage. The second stage aims to gain persistent control of the compromised system. Both malware stages are blocked, by preventing communication from the first stage malware - which causes the attempted attack to have no consequences, and by preventing it from executing the second stage malware, blocking the attacker from establishing connection and resulting in it’s failure and termination.

CONTACT US

12400 St. Highway 71 West Suite 350-364 Austin, TX 78738
1-512-562-2778
info@Cyfyx.com
© 2023 Cyfyx. Proudly powered by Sydney