The company said it detected an “unusually high volume” of failed login attempts on December 12, 2022. This seems to point to credential stuffing attacks where attackers mass-validate login-password combinations from other sources. Norton users are receiving reports that their Norton Password Manager accounts have been compromised by hackers through the compromise of accounts on other platforms.

what is known

NortonLifeLock users are notified that hackers have successfully accessed their Norton Password Manager accounts. It is alleged that attacks were also carried out. Not because of the poor security of Norton Password Manager systems, but because of third-party platforms.

Our own systems were not put at risk. However, we strongly believe that an unauthorized third party knows and uses your username and password for your account.
– told customers in the message.

An internal investigation that continued until 22 December revealed that the attacks began on 1 December and that an undisclosed number of accounts had been successfully hacked. The company reset the Norton passwords of the affected accounts and took additional measures to prevent attackers from regaining access to these accounts in the future.

While the number of hacked accounts was not disclosed, the company said in a statement that the attack may have targeted around 925,000 active and inactive accounts.