(Fortune) Google's "project zero" team, a group of security analysts tasked with hunting for computer bugs, discovered a heap of critical vulnerabilities in Symantec SYMC 1.09% and Norton security products. The flaws allow hackers to completely compromise people's machines simply by sending them malicious self-replicating code through unopened emails or un-clicked links.
The vulnerabilities affect millions of people who run the company's endpoint security and antivirus software, rather ironically to protect their devices. Indeed, the flaws rendered all 17 enterprise products (Symantec brand) and eight consumer and small business products (Norton brand) open to attack.
In the words of Tavis Ormandy, an English hacker who works on the Google team: "These vulnerabilities are as bad as it gets"—and have "potentially devastating consequences."
Advertisement - story continues below