Lancefly APT Custom Backdoor Targets Government and Aviation Sectors
Symantec's Threat Hunter Team said these campaigns have been ongoing for several years
Symantec is a cybersecurity brand whose products and research involve malware, endpoint protection, data security, and threat detection.
Search across headline titles and summaries.
Background for this topic.
Symantec is a long-standing cybersecurity brand associated with endpoint protection, antivirus, data loss prevention (DLP), email and web security, and threat intelligence. Its enterprise security business became part of Broadcom, while its consumer security business was separated and later became part of Gen Digital. As a result, news tagged “Symantec” may concern legacy products, enterprise offerings, or historical company activity rather than a single current organization.
For security practitioners, Symantec-related coverage is most relevant to the protection and management of endpoint and data-control systems. These tools often run with elevated privileges and have broad access to files, traffic, and telemetry, so vulnerabilities, weak policy configuration, or delayed updates can create significant attack paths. Administrators should track product support and ownership changes, validate agent coverage and tamper protection, review telemetry handling for privacy and regulatory requirements, and ensure alerts and DLP events feed tested investigation and response processes.
Symantec's Threat Hunter Team said these campaigns have been ongoing for several years
Government, aviation, education, and telecom sectors located in South and Southeast Asia have come under the radar of a new hacking group as part of a highly-targeted campaign that commenced in mid-2022 and continued into the first quarter of 2023