The security giant has revealed a few hours ago the access to the source code of two of its company products by third parties. The news could acquire more drastic overtones with the call in Pastebin (Google cache) of a group of Indian hackers who claim to have obtained the source code of the Norton AntiVirus software as well as official documents that will be posted on the network.The group, called The Lords of Dharmaraja, says it has planned publication on several websites due to the extreme censorship that the country is experiencing with the agencies of the governments of the United States and India. In fact, they shared some of the information along with a statement on Pastebin. A post that was later deleted although accessible through Google's cache.
As I said at the beginning, if what they say is true, the impact can reach enormous heights in the case of a security company and especially in relation to Norton.
Symantec has stayed out of the news until a few hours ago, at which time they have communicated that:
Hours later Symantec reported that the hack had occurred:We are trying to investigate the report of the theft of our source code and its possible disclosure abroad. The first of the claims made by this group that talked about having norton's source code was a document from 12 years ago where a solution was specified. The source code therefore had not been revealed. As for the second allegation of the power of an additional code, we are still analyzing the information. The first thing is to make sure that any information of our customers is protected. So far there is nothing suspicious.
We will have to wait for the next update of Symantec to know the scope of the attack on its source code.- Publicidad -A segment of the source code used in two of the company's products has been accessed. One of them has already been suspended. The code in question is from four years ago. This does not affect our consumers' current Norton products.
Our network has not been violated but that of a third party has been violated. We are collecting information on the details and are not in a position to provide further details on the third party involved. There is currently no indication that the code was disclosed or that it affected the functionality of Symantec solutions. There is also no indication that customer information has been affected at this time.
Update Segu-Info 13:00: user @YamaTough has provided more information to Brian Krebs. Is the great hype of summer coming?
Source: Alt1040
Leave your comment