Symantec Confirms 2006 Norton AV Source Code Dump

Friday, March 09, 2012



Update: Cris Paden, Sr. Manager for Corporate Communications at Symantec, sent Infosec Island the following statement:

“Symantec can confirm that the source code for 2006 versions of Norton Antivirus posted by Anonymous is authentic.  The exposure of this code poses no increased risk to Norton or Symantec customers.  This code is part of the original cache of code for 2006 versions of the products that Anonymous has claimed to possess over the last  few weeks."

"We anticipated that the code would be posted.  As we have already stated publicly, our analysis shows that due to the age of the exposed code, Symantec antivirus or endpoint security consumer and business customers – including anyone running Norton products – should not be in any increased danger of cyber attacks resulting from this incident.  We also anticipate that Anonymous will post the rest of the code they have claimed to have in their possession."

"So far, they have posted code for the 2006 versions of Norton Utilities, pcAnywhere, and Norton Antivirus. We also anticipate that at some point, they will post the code for the 2006 versions of Norton Internet Security. Again, the code that has been exposed is so old that current out-of-the-box security settings will suffice against any possible threats that might materialize as a result of this incident.

*   *   *

Reports indicate that AntiSec, the offshoot of the rogue hacker collective Anonymous, has published source code for Symantec's 2006 version of the Norton Antivirus product on The Pirate Bay in protest of this weeks arrests of the movement's leadership.

Fox News first reported that infamous LulzSec leader known as Sabu has been working with law enforcement for months to investigate key members of the Anonymous movement, resulting in the multiple arrests.

An Anonymous sympathizer going by the handle YamaTough had tweeted a threat against Symantec on the day of the arrests which read: "Brother, we shall retaliate immediatelly with fury =) we aint done with symantec yet =) expect us FBI frakes very soon".

In early February, anonymous operative had also disclosed the source code for an older version of Symantec's pcAnywhere product on The Pirate Bay.

Sources at Symantec say they are currently drafting an official statement to be made available shortly.

As previously reported, the hacktivists are responsible for exposing parts of the source code for the 2006 version of Symantec's Norton antivirus product, as well as posting questionable documents online that showed that the United States-China Economic and Security Review Commission (USCC) was possibly breached.

Symantec maintains that the source code was stolen in 2006 in a previously undetected network security breach at the company.

YamaTough had also sent Infosec Island 68 sets of usernames and passwords for compromised US government networks. The group maintains claims that the information was obtained from servers owned by various ministries of the Indian government.

Infosec Island had made multiple attempts to prompt YamaTough to provide actual proof that the data had in fact been stolen from servers operated by the Indian government, but all requests were either met with silence or an outright refusal.

Possibly Related Articles:
Antivirus Symantec Headlines Anonymous Norton Pirate Bay Source Code Lulzsec AntiSec Data Dump YamaTough PCAnywhere
Post Rating I Like this!
The views expressed in this post are the opinions of the Infosec Island member that posted this content. Infosec Island is not responsible for the content or messaging of this post.

Unauthorized reproduction of this article (in part or in whole) is prohibited without the express written permission of Infosec Island and the Infosec Island member that posted this content--this includes using our RSS feed for any purpose other than personal use.