updated 12/15/2006 7:05:14 PM ET 2006-12-16T00:05:14

A computer worm is attacking some business PCs through a flaw in antivirus software by Symantec Corp., a security company warned Friday.

EEye Digital Security, based in Aliso Viejo, said the worm, dubbed "Big Yellow," began attacking some computer systems on Thursday — seven months after eEye first discovered the flaw.

Symantec released a patch to address the flaw in May but it's up to its corporate customers to install it. Officials at the Cupertino-based security software company said Friday it had so far received three reports of systems affected by the worm.

"It is definitely a new worm, and it is looking for vulnerable systems, but we're not seeing any evidence of a significant outbreak or infection," said Vincent Weafer, a senior director at Symantec's security response unit.

Big Yellow enters machines through a security hole in the corporate version of Symantec's Norton Antivirus software. Once infected with the worm's "bot" program, a hacker can use it as a way to connect with other computers for malicious attacks.

EEye urged corporate information-technology departments to fix the flaw.

Copyright 2006 The Associated Press. All rights reserved. This material may not be published, broadcast, rewritten or redistributed.

Discuss:

Discussion comments

,

Most active discussions

  1. votes comments
  2. votes comments
  3. votes comments
  4. votes comments