At the end of June, the Project Zero team at Google discovered a major vulnerability in Symantec and Norton products.
What is the vulnerability and the risk?
These vulnerabilities are as bad as it gets. These vulnerabilities don’t require user interaction and affect the default configuration. This vulnerability could result in a cyberattack where the hacker acquires administrative rights to the end-users’ computers and servers via the Symantec agent – giving them complete access to an organization’s information. This malware can also be set to spread itself across a network.
Who Was Affected?
As Symantec use the same core engines across their products, all of the Symantec and Norton branded antivirus products are affected by these vulnerabilities, including:
- Norton Security, Norton 360, and other Norton AntiVirus Solutions
- Symantec Endpoint Protection (All Versions)
- Symantec Email Security (All Platforms)
- Symantec Protection Engine (All Platforms
- Symantec Protection for SharePoint Servers
For the remediation instructions and a full list of all products that were affected by the vulnerabilities click here.
What Are the Next Steps?
To fully mitigate the identified vulnerabilities, Symantec recommends applying the required patches to the affected products as soon as possible. Some of these products cannot be automatically updated, and organizations must take immediate action to protect their networks.
If you do not know if your organization was affected by the vulnerability, contact your IT partner today for more information. If you feel as though your organization is not where it needs to be to handle this type of malware attack, please contact our Managed Security Services team today.