Access member only content, take part in discussions with comments on blogs, news and reviews and receive all the latest security industry news directly to your inbox. Join now for free.
Processing registration... Please wait.
This process can take up to a minute to complete.
A confirmation email has been sent to your email address - SUPPLIED EMAIL HERE. Please click on the link in the email to verify your email address. You need to verify your email before you can start posting.
If you do not receive your confirmation email within the next few minutes, it may be because the email has been captured by a junk mail filter. Please ensure you add the domain @scmagazine.com.au to your white-listed senders.
Symantec confirmed late Thursday that hackers compromised some source code relating to two discontinued enterprise security products.
The code belonged to Endpoint Protection 11.0 and Antivirus 10.2, which are four and five years old, respectively.
Symantec's consumer security line, Norton, was not affected.
"Presently, we have no indication that the code disclosure impacts the functionality or security of Symantec's solution," the company said in a Facebook update.
"Furthermore, there are no indications that customer information has been impacted or exposed at this time."
Symantec said an unnamed third-party network, not its own, was breached.
It is possible the hacked network belonged to India's military intelligence agency.
On Thursday, a cyber gang named The Lords of Dharmaraja said it possessed source code belonging to a dozen software companies, according to a Pastebin document (cached here).
A second document, which is no longer available, contained a sneak peak of the Symantec source code and promised a complete exposure.
A spokesman for the anti-virus company originally denied that any of the documents revealed code, but now the company confirms that one of them did include a segment of the programming language.
Experts said the age of the code will likely prevent misuse.
"In general, there isn't much hackers can learn from the code which they hadn't known before," Rob Rachwald, director of security strategy at Imperva said.
"With code that is four to five years old, chances are the software product has changed quite a bit, making the code even less useful."
This article originally appeared at scmagazineus.com
To begin commenting right away, you can log in below or register an account if you don't yet have one. Please read our guidelines on commenting. Offending posts will be removed and your access may be suspended. Abusive or obscene language will not be tolerated. The comments below do not necessarily reflect the views or opinions of SC Magazine, Haymarket Media or its employees.