ABOUT SYMANTEC

Press Release

Symantec Managed Security Services First to Offer Vendor Independent Vulnerability Data Correlation Service

Service Enhances Breadth and Depth of Analysis, Reducing Security Risks and Helping Ensure Business Continuity

CUPERTINO, Calif. - Oct. 10, 2005 - Symantec Corp. (Nasdaq: SYMC), today announced that Symantec Managed Security Services has now extended its Symantec Vulnerability Data Correlation Service to support the widest variety of vulnerability data services offered to customers in the market. As the industry's only managed security services provider offering vendor independent vulnerability data correlation, Symantec is enabling organizations to more efficiently manage security risk by correlating vulnerability data with attack trends, to meet regulatory compliance requirements, and maintain business continuity.

"As the window from security vulnerability to malicious exploit continues to shrink, it is critical that organizations understand the context of network attacks and the risks posed to their security infrastructures and business operations," said Grant Geyer, vice president, Symantec Managed Security Services. "By correlating vendor independent vulnerability data with real-time security monitoring data, Symantec security analysts can provide customers with an inside look at validated attacks and offer actionable guidance on how to respond."

As part of this offering, Symantec Managed Security Services analysts will have access to a vendor neutral correlation of customer attack data and known vulnerabilities. In addition, Symantec analysts are able to provide additional context by leveraging the global intelligence of Symantec DeepSight Threat Management System, which continuously correlates IDS and firewall attack data from the security systems of over 20,000 partners in over 180 countries, plus virus statistics from the Symantec Digital Immune System and many other human intelligence resources.

Once an attack is confirmed, analysts are able to provide information detailing vulnerable hosts that have not been compromised enabling critical patches to be made. Symantec Vulnerability Data Correlation reduces false positives, therefore customers are only notified when they are at risk, freeing up critical customer staff time.

Through this new service, customers will have a single view for examining attack and vulnerability information through Symantec Managed Security Service's Secure Internet Interface portal. Customers and Symantec analysts will be able to share the same snapshot of the customer's entire security landscape including information on vulnerable hosts, attacks, data on specific vulnerabilities and workarounds, and other reporting capabilities.

In addition, organizations can actively demonstrate regulatory control requirement compliances through the correlation of vulnerability data. Reports can be generated and used to demonstrate to auditors that security monitoring and management is a continuous and real-time activity.

"The next evolution in MSS requires service providers to incorporate the intelligent integration of both attack activity and vulnerability data for better visibility into an organization's risk posture. They will be expected to provide intelligence regarding known system vulnerabilities and active intrusions, regardless of the attack vector or technology exploit," said Allan Carey, program manager, Security Services at IDC. "The ability to effectively correlate attacks with vulnerabilities by utilizing global intelligence databases and cross-referencing the results against an IP asset inventory is key to providing the level of proactive service MSSP customers will come to expect."

Symantec Managed Security Services leverages global intelligence to offer fast and accurate analysis of security data to protect customers against emerging threats and reduce overall security risk. Its 24x7 real-time services enhance an organization's information security posture through continuous monitoring and management, expert analysis, and immediate response to potential security threats. In addition, Symantec's Security Operation Centers have been fully audited and certified by independent third parties to meet industry leading standards, including BS7799 certification and SAS70 Type II audits.

Symantec's extended Vulnerability Data Correlation Service will be available for all Symantec Managed Security Services customers. More information on Symantec Managed Security Services can be found at www.symantec.com.

About Symantec
Symantec is the world leader in providing solutions to help individuals and enterprises assure the security, availability, and integrity of their information. Headquartered in Cupertino, Calif., Symantec has operations in more than 40 countries. More information is available at www.symantec.com.

NOTE TO EDITORS: If you would like additional information on Symantec Corporation and its products, please view the Symantec Press Center at http://www.symantec.com/about/news/release/index.jsp on Symantec's Web site. All prices noted are in US dollars and are valid only in the United States.

Symantec and the Symantec logo are trademarks or registered trademarks, in the United States and certain other countries, of Symantec Corporation.  Additional company and product names may be trademarks or registered trademarks of the individual companies and are respectfully acknowledged.