Facebook was hacked but no data compromised

As one of the largest sites on the internet, there’s no doubt that Facebook is a main target for hackers. It looks like some of those hackers were apparently successful, Facebook has just admitted that their systems were targeted last month with a “sophisticated attack.” However, the company was quick to point out that “we have found no evidence that Facebook user data was compromised.” It sounds like users have no need to worry at this point, but Facebook is continuing to work with its internal engineering teams, security teams at other companies targeted by the attack, and law enforcement officials in an effort to make sure such an attack doesn’t happen again.

As for the attack itself, Facebook says that a “handful” of employees visited a mobile developer website that had been compromised, the site hosted a zero-day exploit that installed malware on those employees’ laptops. The malware bypassed the Java sandbox protections, once Facebook reported the vulnerability to Oracle, the company responded with a patch on February 1st to correct the flaw. Facebook said that the laptops were all running up-to-date virus protection software and they immediately fixed the machines and notified law enforcement.

Reportedly, these attack happen on the same time as on _The Wall Street Journal, The New York Times, _and Twitter.

Source: Facebook, TheVerge


comments powered by Disqus