Symantec confessing its sins : Another rootkit fiasco
After all the mess Sony created with the rootkit DRM functionalities that were discovered on their CDs, Symantec confessed today that they have been using rootkit-type features in Norton SystemWorks. It appears that attackers could use these functionalities to be able to place malicious files on customer's computers.The vendor acknowledged that is was deliberately hiding a directory from Windows APIs to stop people from accidentally deleting important files. After having been warned by security experts, Symantec sent a Systemworks update via LiveUpdate to eliminate the risk.
At least Symantec, unlike Sony, released the patch right away to fix the problem. I think we can still keep a bit of respect towards them since they reported everything themselves.