What Symantec Knew But Didn't Say
from the oops dept
Anti-virus and security companies are known for overhyping. It’s what they do. Every time there’s a new security hole or virus they put out tons of press releases about how it’s the biggest problem since the internet was invented. Now, it looks like Symantec is getting in trouble for a slightly different form of overhyping: overhyping what they knew but didn’t say. They came out with a press release saying that they knew about the Slammer Worm before it came out. However, they only told their customers who were subscribed to some sort of premium program. There are a ton of questions raised by this. First off, how did they know and when did they really know it? If the virus spread in 10 minutes, how is it that they say they knew about it hours before anyone else did? More importantly, what obligation did they have to let the wider community know? Some are accusing them of being “accomplices” to the spread of the virus for seeing it and not doing anything to stop it (unless you were a paying customer).