[ISN] Symantec advises users to turn off PCAnywhere in hack aftermath

From: InfoSec News <alerts_at_private>
Date: Thu, 26 Jan 2012 00:54:45 -0600 (CST)

By Shaun Nichols
26 Jan 2012

Symantec is advising customers to take their copies of PCAnywhere 
offline as the company continues to struggle with the aftermath of a 
major data breach.

The company has issued a whitepaper addressing new vulnerabilities 
brought to light by a recently publicised attack which resulted in 
attackers gaining access to the application's source code. The 2006 hack 
was recently brought to light by an Indian hacking team which is seeking 
to publicly distribute the code.

With the code compromised, Symantec has now determined that a major 
update is necessary to protect users from any flaws revealed in the 
compromised source code. Until that update can be released, the company 
is advising users of pcAnywhere 12.5 to disable the remote management 

"At this time, Symantec recommends disabling the product until Symantec 
releases a final set of software updates that resolve currently known 
vulnerability risks," the company said in the whitepaper.


Did a friend send you this article? Make it your
New Year's Resolution to subscribe to InfoSec News!
Received on Wed Jan 25 2012 - 22:54:45 PST

This archive was generated by hypermail 2.2.0 : Wed Jan 25 2012 - 22:57:14 PST