So, there was a hubbub today about an apparent breach and release of Symantec’s source code for their antivirus product.
The good folks at Infosecisland got the scoop.
From Infosecisland:
Cris Paden, Sr. Manager for Corporate Communications at Symantec emailed Infosec Island editors with the following statement concerning the exposure of source code for the company’s Norton antivirus product:
“Symantec can confirm that a segment of its source code has been accessed. Symantec’s own network was not breached, but rather that of a third party entity.”
“We are still gathering information on the details and are not in a position to provide specifics on the third party involved.”
“Presently, we have no indication that the code disclosure impacts the functionality or security of Symantec’s solutions. Furthermore, there are no indications that customer information has been impacted or exposed at this time.”
The last line there is something that I took the liberty of putting in bold. Sounds like a line we’ve heard someplace before…
Oh right, I remember. From which we find one of my favourite quotes in recent memory,
Our investigation has led us to believe that the attack is in the category of an Advanced Persistent Threat (APT).
Yes, I can see how enabling Flash to work in Excel could be seen as an APT.
Well, in the meantime we’ll sit back and watch the fireworks as the media machine chews on this one for a couple days.
Popcorn anyone?
Source: Article Link
(Image used under CC from owlhere)
First time I read this headline on twitter I missed the word “source”. “Hacker group threatens to release Symantec AV (source).”
Got a chuckle thinking of hackers installing Symantec maliciously.
@Matt I just bit my tongue to keep from laughing. 🙂
@Matt@Dave
Funniest comment I have ever read!