After a hacker using the alias “YamaTough” claimed his crew was in possession of source code for Norton Antivirus roughly two weeks ago, Symantec stated the hackers were only in possession of source code for Symantec Endpoint Protection 11.0 and Symantec Antivirus 10.2. However, the company now admits that source code for some of its Norton products was stolen in an attack in 2006.
"...Symantec believes that the disclosure was the result of a theft of source code that occurred in 2006,” Symantec spokesperson Cris Paden told SecurityWeek. “We believe that source code for the 2006-era versions of the following products was exposed: Norton Antivirus Corporate Edition; Norton Internet Security; Norton SystemWorks (Norton Utilities and Norton GoBack); and pcAnywhere.”
“Due to the age of the exposed source code, except as specifically noted below, Symantec customers — including those running Norton products — should not be in any increased danger of cyber attacks resulting from this incident,” he continued. “Customers of Symantec's pcAnywhere product may face a slightly increased security risk as a result of this exposure if they do not follow general best practices. Symantec is currently in the process of reaching out to our pcAnywhere customers to make them aware of the situation and to provide remediation steps to maintain the protection of their devices and information.”