According to ZDNet Symantec corporate users are being targeted by a variant of Spybot, a worm that has been doing the rounds for a while now. A vulnerability in Symantec Corporate Edition and Symantec Client Security is being exploited which allows the attacker to assume control of the infected computer.
Although a fix for this vulnberability has been available for the past 7 months, customers must actually go and download it. Ideally you would want the software to check for updates on a regular basis, rather than depend on user intervention.
According to the article, symantec are “re-evaluating the update mechanism for corporate tools”. What’s that old saying about locking stable doors and horses having bolted?
You can read the article in full here at