Facebook Employees' Laptops Compromised; User Data Believed Safe 75
Trailrunner7 writes "Laptops belonging to several Facebook employees were compromised recently and infected with malware that the company said was installed through the use of a Java zero-day exploit that bypassed the software's sandbox. Facebook claims that no user data was affected by the attack and says that it has been working with law enforcement to investigate the attack, which also affected other unnamed companies. Facebook officials did not identify the specific kind of malware that the attackers installed on the compromised laptops, but said that the employee's machines were infected when they visited a mobile developer Web site that was hosting the Java exploit. When the employees visited the site, the exploit attacked a zero-day vulnerability in Java that was able to bypass the software's sandbox and enable the attackers to install malware. The company said it reported the vulnerability to Oracle, which then patched the Java bug on Feb. 1."
thats what happens when (Score:2, Insightful)
you use windows as your dev environment
It's good they'll protect your data from thieves.. (Score:4, Insightful)
but who's gonna protect people's data from Facebook itself?
Safe? (Score:5, Insightful)
Given Facebook's MO, users should assume that anything Facebook, Inc. had access to is already in the hands of people you can't trust.
Them being hacked is pretty irrelevant.
Useless articles (Score:4, Insightful)
What's the point of these articles that announce that so and so company's systems have been hacked? They never contain any forensic information about the exploits other than to loosely identify the vulnerable software the bad guys used to get into the system. No identification of the malware installed, no identification of the OS's the laptop were running, no identification of any antivirus products that turned out to be completely useless in stopping the attacks. IOW, no goddamn information that would be useful to anyone who wanted protect themselves from attack, or at least detect whether their system were already compromised.
The lack of forensic details about the attack provided by Facebook or any of the other companies hit with the java exploit causes great doubt about their claims that no user data was accessed.
Re:thats what happens when (Score:1, Insightful)
How was it trolling? Why doesn't the article state what OS those laptops were running? Hmm? Because it's the most insecure OS known to mankind, Windows, and it doesn't even have to be said any longer? Or because the writers are pathetically unprofessional and are deliberately withholding the facts here? Either way, I don't know.
Hey Timothy, how does Zuckerberg's cock taste ? (Score:0, Insightful)
SMART people don't use Facebook and smart people ARE NOT INTERESTED
IN FACEBOOK.
How much does Facebook PAY you sorry dickeating morons to continue
to post drivel about Facebook every fucking day ?
Do us all a favor, Timothy, and drink some Drano.
"User Data Safe" (Score:3, Insightful)