digg

Facebook Connect Join Digg About
See the original image at chrysler5thavenue.blogspot.com

What is PIFTS and why is Symantec covering it up?

chrysler5thavenue.blogspot.com Users of Symantec's popular Norton brand of software have been asking about a program called PIFTS.exe that has been showing up on their PCs. Symantec has been deleting all inquiries regarding PIFTS.exe from their community forums at commounity.norton.com as they show up.

Who dugg this?

Digg DudeWhat is Digg?

Digg is a place for people to discover and share content from anywhere on the web. Digg surfaces the best stuff as submitted and voted on by the community. Take the Tour to learn more.

108 Comments

show profanity settings
expand all
  • Janjko, on 03/10/2009, -0/+27This story is flagged, just when it hit 200 Diggs it disappeared from the upcoming stories with most diggs, Digg doesn't want it on it's front page.

    http://digg.com/news/software/upcoming/most
  • pifts, on 03/10/2009, -4/+30It's connecting and sending information to server farms in Africa.
    The events have not gone unnoticed, yet Symantec are obviously denying all allegations by deleting and banning anything and anyone speaking of "Pifts.exe".

    Please fellow Digg users, spread the word.
    We demand answers.
  • AlphaDingDong, on 03/10/2009, -2/+23I've run pifts.exe through my decompiler and located the portions of the code that handle file access and socket connections. This program appears to be logging all google searches and cookies, then sending a report to several agencies, including not only Symantec but also Microsoft, a strange server in Africa and a government server in Washington DC.
  • Lekete, on 03/10/2009, -0/+19makes me glad I don't have Norton... or any Symantec products, for that matter
  • dlpwillywonka, on 03/10/2009, -0/+18Someone on IRC brought up the point that Symantec had been working with the FBI on this little gem. Perhaps it's evolved into a different project?

    <a class="user" href="http://en.wikipedia.org/wiki/Magic_Lantern_%28soft ... rel="nofollow">http://en.wikipedia.org/wiki/Magic_Lantern_(softwa ...</a>

    There was another point made about how the information gathered with this program could be exported to another country to get around those pesky civil rights.
  • fartedloudly, on 03/10/2009, -0/+16Why is Digg hiding this story? http://chrysler5thavenue.blogspot.com/2009/03/digg ...
  • damang111, on 03/10/2009, -0/+16Anyone know why this isn't on the front page??
  • chaseonfire, on 03/10/2009, -1/+16When I heard it was contacting Africa I thought this was from my good friend who happens to be a Prince from Nigeria. I'm expecting $50,000 any day now :)
  • youri, on 03/10/2009, -0/+15This reminds me of the digg decryption key fiasco. Digg wouldn't repeat the same mistake again - not unless it was pressured to do so by the government.

    Everyone who has dugg ths: keep yourself safe, and encrypt anything you may not want to come to scrutiny if (when?) your equipment gets seized. I have a feeling this is just the beginning.
  • rogueofmv, on 03/10/2009, -3/+17This needs MOAR DIGGS.
    Spread the word, people.
  • benitojuarez, on 03/10/2009, -0/+13pifts was trying to connect to 67.134.208.160

    http://ws.arin.net/whois/?queryinput=67.134.208.16 ...

    Qwest Communications Corporation QWEST-INET-11 (NET-67-128-0-0-1)
    67.128.0.0 - 67.135.255.255
    SwapDrive QWEST-IAD-SWAPDRIVE4 (NET-67-134-208-128-1)
    67.134.208.128 - 67.134.208.255

    # ARIN WHOIS database, last updated 2009-03-09 19:10
    # Enter ? for additional hints on searching ARIN's WHOIS database.
  • Kyrgizion, on 03/10/2009, -0/+13Tell that no Mr. Nbutaki, heir to the last cousin of the crown prince of Niger. How else could he have offered me 20% of 15 million dollars if I let him use my bank account?
  • Zippo, on 03/10/2009, -0/+11405 diggs? Why the ***** isn't this on the front page?
  • Bapho, on 03/10/2009, -1/+12no worries with this new virus i have norton installed
  • IslandJon23, on 03/10/2009, -0/+10So this is how the world ends, not with a bang, but with a pifts.
  • enigmatiX, on 03/10/2009, -7/+17I ACCIDENTALLY THE WHOLE PIFTS, IS THIS BAD?
  • ondre, on 03/10/2009, -0/+9wikipedia article
    http://en.wikipedia.org/wiki/PIFTS.exe
  • evergrim, on 03/10/2009, -0/+9I asked about it on the Norton forums and had my post deleted within a minute and was banned from the website (IP ban).
  • evergrim, on 03/10/2009, -0/+8Here's some pics of the ebaumsworld raid that's going on over at Norton Forums:

    http://i41.tinypic.com/2nvtmbn.jpg

    http://i41.tinypic.com/20a78s6.jpg

    http://i44.tinypic.com/o01g0m.jpg
  • silverhaze06, on 03/10/2009, -0/+8i see this program running in the background of my computer. but no matter what i do i cant shut it down and i cant uninstall it. norton does not do a thing to it and does not even notice it.
  • iwhitt567, on 03/10/2009, -1/+9This is absolute bull. Kevin, you're a man of modern technology, surely you must be an advocate for free internet! MAKE THIS FRONT PAGE!
  • kemp34, on 03/10/2009, -0/+8469 diggs an not popular? I smell a rat!
  • dlpwillywonka, on 03/10/2009, -0/+8I care less about what the file does and more about why Symantec decided ignoring and covering up was the best course of action. Is the truth so horrible, that saying nothing is the better alternative?

    With the worlds economy as it is, maybe the truth is worse, atleast to Symantec's bottom line.
  • Bapho, on 03/10/2009, -0/+8nonsense. the internet have not even been discovered in africa yet
  • ricinbean, on 03/10/2009, -0/+8Why is Digg hiding this? First Symantec tries to cover it up, now Digg?
  • evergrim, on 03/10/2009, -0/+8The mystery deepens...
  • sargo, on 03/10/2009, -0/+767.134.208.160
    we should ddos the server that the info is getting sent to
  • jonzey0, on 03/10/2009, -1/+8We need to know the truth
  • VolTekka, on 03/10/2009, -0/+7Then you're a terrible person who doesn't care about freedom.
  • EmperorOfCheese, on 03/10/2009, -0/+6I hope that's just a clever Fahrenheit 451 reference.
  • fartedloudly, on 03/10/2009, -2/+8I mispelled community.norton.com in the text above. Sorry!
  • fartedloudly, on 03/10/2009, -1/+7DIGG the story about DIGG's COVER UP OF SYMANTEC'S COVER UP:

    http://digg.com/tech_news/Digg_covers_up_Symantec_ ...
  • VolTekka, on 03/10/2009, -1/+7This is why you never use a secretive antivirus. ***** spies.
  • ninja0, on 03/10/2009, -0/+5For the internets!
  • TJ11240, on 03/11/2009, -0/+5I know they're making changes to the FP algorithm, but this is getting crazy.
  • GoIgo13, on 03/10/2009, -3/+8The first rule of PIFTS club is you do not talk about PIFTS.
  • hypatia, on 03/10/2009, -0/+5you're thinking of the DMCA, which only applies to anti-circumvention devices (or software). disassembling software in general is an established practice in computer security and is done all the time.
  • kemp34, on 03/10/2009, -0/+5Time to stop buying any Symantec products.
  • youri, on 03/10/2009, -0/+5Exposing the government's secret wiretapping and cyber spying plans and the fact that they're now (forcing?) corporations to do this, will draw their ire...
  • kurttrail, on 03/10/2009, -2/+7The coverup of this, makes Symancrap look guilty.

    Thankfully, I stopped using Symancrap products a long time ago, because their products are bloated malware.

    When will you Symancrap Lusers learn?
  • robrepp, on 03/10/2009, -0/+4Searched All Stories, Title-Description-AND URL and then things start to show up. Not this thread, tho. Still WTF?
  • youri, on 03/10/2009, -0/+4How long have they been doing this unchallenged? Their own 'signed' patches can do anything they please.. Who's watching the watchers? The only reason we found out about their shenanigans with users' privacy is because of a mistake on their part...
  • SteelChicken, on 03/10/2009, -0/+4RUNS FOR TIN HAT
  • ftpaddict, on 03/10/2009, -1/+5Hahaha, searching for PIFTS on Digg yields no results either.
  • robrepp, on 03/10/2009, -0/+4Search for pifts.exe on Digg is producing "not found" messages? WTF?
  • Acetate, on 03/10/2009, -1/+5I can hear the black helicopters swooping down already!
  • ripndipp, on 03/10/2009, -0/+4needs more diggs bro
  • jparkinson, on 03/10/2009, -0/+4Surely digg of all websites understands that you can't hide from the collective snooping of the internet..
  • doctechnical, on 03/10/2009, -1/+5Post the code or STFU.
  • galakadon, on 03/10/2009, -2/+6Time to get out the tinfoil.
  • Fetching more discussions...
    Show 51 - 100 of 111 discussions

  • Add a Comment

    Login or register to comment!
    Or, sign-in super fast with your Facebook account ...


© Digg Inc. 2009 — Content created and posted by Digg users is dedicated to the public domain | Terms of Use Updated | Privacy Policy
DIGG, DIGG IT, DUGG, DIGG THIS, Digg graphics, logos, designs, page headers, button icons, scripts, and other service names are the trademarks of Digg Inc.