Press Release

LinkedIn Facebook Twitter RSS

Symantec Protects Against VBS.Newlove.A

NAVEX Technology Allows Seamless Update to Detect Destructive Worm

CUPERTINO, Calif. - May 19, 2000 - Symantec Corp. (NASDAQ: SYMC) today announced that researchers at the Symantec AntiVirus Research Center (SARC) developed protection against VBS.NewLove.A - a polymorphic computer worm with an extremely destructive payload. The Symantec detection for VBS.NewLove.A includes a new definition set to reliably detect the worm.

"With complex new viruses becoming the norm, it is more important than ever to employ an anti-virus product that has a modular engine and can be deployed at the gateway, server and desktop," said Sanjiv Bhargava, Symantec's vice president of Core Technology. "Symantec's unique NAVEX technology can save IT organizations countless hours of testing, updating, manual virus eliminating, and a backlog of end-user calls to the help-desk."

Norton AntiVirus Extension (NAVEX) technology is integrated into all Norton AntiVirus products and offers unparalleled protection to users resulting in lower cost of ownership. This modular virus-scanning engine allows SARC engineers to quickly update and redistribute the relevant elements of Norton AntiVirus software efficiently and effectively during normal virus definition updates.

VBS.NewLove.A is an Internet worm that uses Microsoft Outlook to spread itself as an attachment with the subject line "FW: [attached file name] along with the attachment listed in the subject line. The virus randomly chooses a recently opened file from the Start/Document folder in the Microsoft Start menu and attaches it to the email as a .vbs file. Each time the virus spreads, it mutates itself to evade detection. Additionally, each time the worm mutates, it adds to the code, which continually increases the file size.

The worm sends a mutated version of itself to all addresses in the computer user's Outlook address book causing mail servers to clog. Once the attachment is opened, the virus overwrites numerous files and renders the computer inoperable. This affects both local and network drives, including mapped networked drives where the user has write access rights.

Symantec's Norton AntiVirus customers can download the current virus definition set, which includes a cure for the VBS.NewLove.A virus through the following Web sites Symantec's LiveUpdate feature or from the Symantec Web site at

Symantec AntiVirus Research Center
SARC is one of the industry's largest dedicated team of virus experts. With offices located in the United States, Japan, Australia, and the Netherlands, the sun never sets on SARC. The center's mission is to provide swift, global responses to computer virus threats, proactively research and develop technologies that eliminate such threats, and educate the public on safe computing practices. As new computer viruses appear, SARC develops identification and detection for these viruses, and provides either a repair or delete operation, thus keeping users protected against the latest virus threats.

About Symantec
Symantec is the world leader in providing solutions to help individuals and enterprises assure the security, availability, and integrity of their information. Headquartered in Cupertino, Calif., Symantec has operations in more than 40 countries. More information is available at

NOTE TO EDITORS: : If you would like additional information on Symantec Corporation and its products, please view the Symantec Press Center at on Symantec's Web site. All prices noted are in US dollars and are valid only in the United States.

Symantec, the Symantec logo, VERITAS, and the VERITAS logo are trademarks or registered trademarks of Symantec Corporation or its affiliates in the United States and certain other countries. Additional company and product names may be trademarks or registered trademarks of the individual companies and are respectfully acknowledged.

FORWARD LOOKING STATEMENT: This press release contains forward-looking statements. There are certain important factors that could cause Symantec's future development efforts to differ materially from those anticipated by some of the statements made above. Among these are the anticipation of the growth of certain market segments, the positioning of Symantec's products in those segments, the competitive environment in the software industry, new security threats, dependence on other products, changes to operating systems and product strategy by vendors of operating systems, and the importance of new Symantec products. Additional information concerning those and other factors is contained in the "Risk Factors" section of the company's annual report on Form 10-K for the fiscal year ended April 2, 1999.