Saturday, February 11, 2012

Norton Scientific Reviews: Symantec source code leaked by hacker

Norton Scientific Reviews: Symantec source code leaked by hackers
A group of hackers who call themselves the Lords of  Dharmaraja, (and is associated with Anonymous) have published the source code of Symantec

A group of hackers who call themselves the Lords of  Dharmaraja, (and is associated  with Anonymous) have published the source code of Symantec, a digital security firm  know for the Norton antivirus program and pc Anywhere, raising concerns that others  could exploit the security holes and try to control the users computer.
The release of the source code came after the 'extortion' attempt failed as Symantec  did not comply with their numerous deadlines. Negotiations through email messages between a representative of the hacker group, 
YamaTough, and someone from Symantec were also released online. The exchange of  messages are about Symantec's offer to pay USD 50,000 for the hackers to stop  disclosing the source code and announce to the public that the whole Symantec hack  was a fake, which made them a subject of mockery for appearing to buy protection.
Both sides admitted that their participation was just a trick. The hackers denied any extortion aim, saying that they never intended to take the  money and were going to publish the source code whatever happens; they simply want  to humiliate them so they played along. While Symantec said that they are not actually  the one in communication with the hacker, but a law enforcement agent. The long negotiation worked to the favor of Symantec as they have been able to come  up with patches to theirNorton and pcAnywhere programs. Symantec has advised their  users to stop using the softwares in the meantime until they have issued more patches  for them.
Symantec released a statement saying that they have always been prepared for the  leak of the source code so they've made and distributed hotfixes on January to secure  their users. The drawn-out negotiation is an obvious sign of a law enforcer on the other line.  Delaying tactics is one of their assets to obtain insight into the enemy. More  importantly, it will create more transactions where paper trail will be left along the way  -- utilizing persons who have been involved in the process and the records themselves  to trace the suspects.
It has been a common ploy of investigators like the FBI who deal with kidnappers or  extortionists to break down the amount into several smaller payouts. Since 2006, Symantec has already suspected there has been a network breach but they were not able to verify any data pilfering until recently when the hackers threatened them to release the source code of Norton.
There are further reports saying that the source code of Symantec was stolen from  servers of India's intelligence and military department.  (They alleges that Symantec  has previously given India the code to guarantee the government that they contain no  malicious program.) However, this was denied by Symantec -- they have already  admitted that the theft happened in their own servers and network.
The security firm formerly said that the Indian group was also the one responsible for  the 2006 breach but retracted it today. They are now saying they're not sure who stole the source code in 2006 and how they managed to get their hands on it. Norton Scientific Reviews is maintained by a blogger-cum-security-specialist who keeps  a close watch on the tech industry and the trend of badware. This blog aims to educate  the public and keep the pros up-to-date with regards to malicious software and their respective anti-virus counterparts.
In this digital age, being in-the-know is the most elementary step to avoid getting owned. Norton Scientific Reviews covers even the most basic concepts on malware and  infection prevention for newbies. While for tech junkies, there are also in-depth  software reviews and jargon-filled tech reports on various topics.

No comments:

Post a Comment