After Sony, Symantec in a possible Rootkit dilemma

Makers of security applications Symantec have released an update to their Norton SystemWorks. This update is to fix a possible security issue to prevent hackers to break in a user’s computers using techniques used by Symantec to protect the Recycle Bin feature of the Windows Operating System.

The problem is related to a feature called Norton Protected Recycle Bin. This application creates a hidden directory on Windows systems. The aim is to keep a folder to store the deleted files on the computer by the user for future retrieval. However, the techniques used by Norton to hide this folder might prevent it from being scanned by AntiVirus and AntiSpyware applications.

Symantec said in an advisory released on Tuesday: “This could potentially provide a location for an attacker to hide a malicious file on a computer. This update is provided proactively to eliminate the possibility of that type of activity.” This resembles the way Sony used to hide certain files when a user played a DRM enabled Audio CD on the computer. Privacy advocates blasted the entertainment company for using such techniques leading to possible security issues for the user.

Symantec said in a clarification that the reason behind hiding the folder was to prevent any accidental deletion of files by the user, which might have resulted in problems recovering using the feature in their software applications. However, their have reconsidered their policy of hiding the folder and this latest update would fix the issues.