15 Feb 2013
Facebook developers hit by Java malware
Facebook[/caption] Facebook has posted that several of its mobile developers had experienced a sophisticated breach by having computers infected with malware. It now claims to have cleaned up the infected machines and is collaborating with law enforcement on the incident. Facebook encourages people to submit vulnerabilities to their Bug Bounty Program. Friday, February 15, 2013 at 1:29pm, Facebook posted:
We have found no evidence that Facebook user data was compromised.…we flagged a suspicious domain in our corporate DNS logs and tracked it back to an employee laptop. Upon conducting a forensic examination of that laptop, we identified a malicious file, and then searched company-wide and flagged several other compromised employee laptops. After analyzing the compromised website where the attack originated, we found it was using a “zero-day” (previously unseen) exploit to bypass the Java sandbox (built-in protections) to install the malware. We immediately reported the exploit to Oracle, and they confirmed our findings and provided a patch on February 1, 2013, that addresses this vulnerability…]]>