Security company Symantec has said that one of its websites was successfully breached.
Romanian security researcher 'Unu' posted details of the breach in a blog post on Monday.
Unu claimed to have cracked the Symantec server using a blind SQL injection attack, and to have accessed customer information and passwords.
Symantec on Tuesday confirmed the crack.
"A SQL injection vulnerability was identified at pcd.symantec.com," said the company in a statement. "Symantec has remediated the website vulnerability, resulting in little to no customer impact. The website facilitates customer support for users of Symantec's Norton-branded products in Japan and South Korea only. This incident did not affect Symantec customers anywhere else in the world. The incident pertained only to customer support in Japan and South Korea and did not affect the safety and usage of Symantec's Norton-branded consumer products at all. Symantec is still investigating the incident has no further details to share at this time."