Big Yellow worm targets Symantec bug

By
Follow google news

Online threats shifting away from Microsoft, warns security researcher.


Researchers at EEye Digital Security claim to have found a worm that targets Symantec's antivirus software.

The 'Big Yellow' malware targets a flaw in the remote management interface for the Symantec AntiVirus and Symantec Client Security applications.

On infection, systems are recruited for a botnet and the worm starts using the system as a launch for further infections.

Symantec issued a patch for the flaw in May, but many enterprises failed to deploy the update.

Marc Maiffret, chief technology officer at EEye, suggested that many users do not perceive software flaws in non-Microsoft products as a serious threat because large scale attacks 'always' target Microsoft.

However, Maiffret expects that the Big Yellow worm is the first of many online threats that target non-Microsoft software.

"Given the rapid discovery of critical vulnerabilities within desktop applications other than Microsoft's, the release of malware of this magnitude targeting non-Microsoft software was only a matter of time," he said.
Got a news tip for our journalists? Share it with us anonymously here.
Copyright ©v3.co.uk
Tags:
bigbugsecuritysymantectargetswormyellow

Sponsored Whitepapers

2026 Engineering Reality Report
2026 Engineering Reality Report
How Kraft Heinz Transformed Planning with AI & 5 M+ Data Sets
How Kraft Heinz Transformed Planning with AI & 5 M+ Data Sets
Defend Your Network from the Next Generation of AI Threats
Defend Your Network from the Next Generation of AI Threats
Optus Enterprise Mobility
Optus Enterprise Mobility
Life After VMware: Scale Securely with mCloud by Micron21
Life After VMware: Scale Securely with mCloud by Micron21

Events

Most Read Articles

Euro cops take down cybercrime network with 49 million fake accounts

Euro cops take down cybercrime network with 49 million fake accounts
Australia's new cyber affairs ambassador sourced from ASD

Australia's new cyber affairs ambassador sourced from ASD
Microsoft breaks Windows 11 Recovery Environment in October update

Microsoft breaks Windows 11 Recovery Environment in October update
QLD government retires CISO position title

QLD government retires CISO position title
techpartner.news logo
Sydney-based AI-cloud waste startup raises $3m
Sydney-based AI-cloud waste startup raises $3m
Brennan uses NiCE to modernise its contact centre
Brennan uses NiCE to modernise its contact centre
Impact Awards: Tecala slashes customer response times for fintech IQumulate
Impact Awards: Tecala slashes customer response times for fintech IQumulate
Interactive introduces private cloud platform
Interactive introduces private cloud platform
Digital61 expands cybersecurity portfolio
Digital61 expands cybersecurity portfolio

Log In

  |  Forgot your password?