Security news aggregator

Latest coverage for Symantec

Symantec is a cybersecurity brand whose products and research involve malware, endpoint protection, data security, and threat detection.

59 headlines in this view

Refine the feed

Search across headline titles and summaries.

Tag briefing

Background for this topic.

Symantec is a long-standing cybersecurity brand associated with endpoint protection, antivirus, data loss prevention (DLP), email and web security, and threat intelligence. Its enterprise security business became part of Broadcom, while its consumer security business was separated and later became part of Gen Digital. As a result, news tagged “Symantec” may concern legacy products, enterprise offerings, or historical company activity rather than a single current organization.

For security practitioners, Symantec-related coverage is most relevant to the protection and management of endpoint and data-control systems. These tools often run with elevated privileges and have broad access to files, traffic, and telemetry, so vulnerabilities, weak policy configuration, or delayed updates can create significant attack paths. Administrators should track product support and ownership changes, validate agent coverage and tamper protection, review telemetry handling for privacy and regulatory requirements, and ensure alerts and DLP events feed tested investigation and response processes.

Volume over time

Weekly headline count for the current query.

Showing 20 most recent headlines of 59 Filtered view

Threat actors associated with the DragonForce ransomware have been observed using a custom Go-based remote access trojan (RAT) called Backdoor.Turn to conceal command-and-control (C2) traffic inside Microsoft Teams relay infrastructure

Cybersecurity researchers have flagged fresh activity from a China-aligned threat actor known as Webworm in 2025, deploying custom backdoors that employ Discord and Microsoft Graph API for command-and-control (C2 or C&C) communications

New research from Broadcom's Symantec and Carbon Black Threat Hunter Team has discovered evidence of an Iranian hacking group embedding itself in several U.S. companies' networks, including banks, airports, non-profit, and the Israeli arm of a software company

The North Korea-linked Lazarus Group (aka Diamond Sleet and Pompilus) has been observed using Medusa ransomware in an attack targeting an unnamed entity in the Middle East, according to a new report by the Symantec and Carbon Black Threat Hunter Team

Threat actors with links to the Play ransomware family exploited a recently patched security flaw in Microsoft Windows as a zero-day as part of an attack targeting an unnamed organization in the United States

The Russia-linked threat actor known as Gamaredon (aka Shuckworm) has been attributed to a cyber attack targeting a foreign military mission based in Ukraine with an aim to deliver an updated version of a known malware called GammaSteel

Loading more headlines...