Security news aggregator

Latest coverage for Symantec

Symantec is a cybersecurity brand whose products and research involve malware, endpoint protection, data security, and threat detection.

98 headlines in this view

Refine the feed

Search across headline titles and summaries.

Tag briefing

Background for this topic.

Symantec is a long-standing cybersecurity brand associated with endpoint protection, antivirus, data loss prevention (DLP), email and web security, and threat intelligence. Its enterprise security business became part of Broadcom, while its consumer security business was separated and later became part of Gen Digital. As a result, news tagged “Symantec” may concern legacy products, enterprise offerings, or historical company activity rather than a single current organization.

For security practitioners, Symantec-related coverage is most relevant to the protection and management of endpoint and data-control systems. These tools often run with elevated privileges and have broad access to files, traffic, and telemetry, so vulnerabilities, weak policy configuration, or delayed updates can create significant attack paths. Administrators should track product support and ownership changes, validate agent coverage and tamper protection, review telemetry handling for privacy and regulatory requirements, and ensure alerts and DLP events feed tested investigation and response processes.

Volume over time

Weekly headline count for the current query.

Showing 20 most recent headlines of 98 Filtered view

GodDamn ransomware uses the signed PoisonX driver to disable security tools, marking a more advanced version of the Beast ransomware family. Symantec’s Threat Hunter Team found a new ransomware family called GodDamn that first appeared in the wild on May 21, 2026, and analyzed an attack that took place in early June. The group behind […]

Threat actors associated with the DragonForce ransomware have been observed using a custom Go-based remote access trojan (RAT) called Backdoor.Turn to conceal command-and-control (C2) traffic inside Microsoft Teams relay infrastructure

DragonForce hid for months by routing malware traffic through Microsoft Teams infrastructure, masking C2 activity and evading network detection. DragonForce ransomware operators hit a major U.S. services firm and stayed hidden for one to two months by routing their command-and-control traffic through Microsoft’s own Teams relay servers. Symantec’s threat hunters tracked the custom backdoor they […]

Attackers spent five months silently stealing emails from a stock exchange executive’s Outlook account in a suspected espionage operation. A threat actor quietly sat inside a senior executive’s Outlook account at a major global stock exchange for roughly 150 days, from October 2025 to March 2026. Broadcom’s Symantec and Carbon Black threat-hunting team investigated the […]

Cybersecurity researchers have flagged fresh activity from a China-aligned threat actor known as Webworm in 2025, deploying custom backdoors that employ Discord and Microsoft Graph API for command-and-control (C2 or C&C) communications

New research from Broadcom's Symantec and Carbon Black Threat Hunter Team has discovered evidence of an Iranian hacking group embedding itself in several U.S. companies' networks, including banks, airports, non-profit, and the Israeli arm of a software company

New ransomware of choice, same critical targets North Korea’s Lazarus Group appears to have added another tool to its kit. It has begun using Medusa ransomware in extortion attacks targeting at least one US healthcare organization and an unnamed victim in the Middle East, according to Symantec and Carbon Black threat hunters.…

The North Korea-linked Lazarus Group (aka Diamond Sleet and Pompilus) has been observed using Medusa ransomware in an attack targeting an unnamed entity in the Middle East, according to a new report by the Symantec and Carbon Black Threat Hunter Team

Bank Info Security 6 months, 2 weeks ago

Symantec, Carbon Black Unite Under Broadcom

Jason Rolleston: Unified Agent and AI Aim to Boost Midmarket Security CapabilitiesBroadcom's integration of Symantec and Carbon Black promises a unified single-agent framework and AI-enhanced threat detection to help small and midmarket businesses defend against sophisticated cyberthreats with limited resources, said Jason Rolleston.

Bank Info Security 9 months ago

Chinese Actor Targets Russian IT Provider

Symantec Says It Spotted Likely Supply Chain HackSuspected Chinese state-linked hackers reportedly breached a Russian IT service provider in an espionage campaign targeting government-related networks. Symantec uncovered Chinese hackers they named Jewelbug, infiltrating a Russian company between January and May.

Loading more headlines...