Computerworld: Hackers have publicly exposed source code for two of Symantec’s older enterprise security products: Symantec Endpoint Protection 11.0 and Symantec Antivirus 10.2. Both products are between four and five years old, and the company says that the code in the current iterations of the software has changed significantly since then. In a statement, the company said, “Our own network was not breached, but rather that of a third party entity. We are still gathering information on the details and are not in a position to provide specifics on the third party involved. Presently, we have no indication that the code disclosure impacts the functionality or security of Symantec’s solutions.”
The code was posted online by a hacker known as “Yama Tough” who is associated with the Indian hacking group Lords of Dharmaraja. Although Symantec has not said where the hackers got the code, the information posted appears to come from an Indian government server. The Indian government requires security companies like to Symantec to submit their code for inspection so that it can make sure they are not spying on the government.