Facebook was the victim of a Java exploit, computers were compromised

Facebook has now stated it is the latest company to fall victim to a cyber attack, but added that there's no evidence that the attack affected any of the company's user data; Facebook revealed the details in a post on its security blog.

The blog post stated that the problems were caused due to a number of its employees checking out an unnamed mobile developer website on their laptops that had become infected with malware. The laptops themselves had malware installed on their PCs after they visited said website. Facebook added:

In this particular instance, we flagged a suspicious domain in our corporate DNS logs and tracked it back to an employee laptop. Upon conducting a forensic examination of that laptop, we identified a malicious file, and then searched company-wide and flagged several other compromised employee laptops.

The infected website used Java to transmit the malware. Facebook said they alerted Java creator Oracle and they have since issued a patch to Java that closes the exploit. This would seem to be just the latest in a string of Java-related security issues that have cropped up in the past several months. Facebook said that it has since "remediated all infected machines, informed law enforcement, and began a significant investigation that continues to this day."

Source: Facebook | Image via Facebook

Report a problem with article
Previous Story

Warframe open beta weekend starts

Next Story

Skype: Windows video messaging coming by late April

30 Comments

Commenting is disabled on this article.

Oracle needs to redesign the VM from the ground up, since Java is a popular language they should be more concerned about it. Oracle is simply making the Java life a bad one!

As has been said hundreds of times elsewhere, Java is not just a web thing. Getting rid of it would cripple applications across all sorts of use cases. This is not advanced knowledge.

Joshie said,
As has been said hundreds of times elsewhere, Java is not just a web thing. Getting rid of it would cripple applications across all sorts of use cases. This is not advanced knowledge.

Oh, so they have Java on computers now!

Joshie said,
As has been said hundreds of times elsewhere, Java is not just a web thing. Getting rid of it would cripple applications across all sorts of use cases. This is not advanced knowledge.

Considering most people don't know what Java is and just blindly click accept to install the addon I would say its not basic knowledge either.

More importantly, why do facebook machines have java installed ? None of the facebook backend uses java.

Exactly, plenty of legitimate software (desktop and server) uses it... they should just make the web plugin an optional and separate download from the rest of it, in no way should that thing be installed into a browser and enabled by default. Most people who install it for other uses probably don't even realize it's getting installed into their browsers as well.

paulbeattie87 said,
Might be running netbeans for PHP development. Perish the though!

They don't use PHP and they have their own software that they use to write the hiphop code on their github page.

n_K said,
More importantly, why do facebook machines have java installed ? None of the facebook backend uses java.

I do get IE10 asking me to enable java each time I access Facebook through it, which ofc I wont.

paulbeattie87 said,
Might be running netbeans for PHP development. Perish the though!

You can install java and disable the browser plugin.

Why is it so damn difficult for Oracle to restrict Java on web pages only to signed applets? And if they don't want to, can't browsers enforce that restriction in their place by validating the jar files and put a giant warning before running unsigned applets?

Java code operates in some kind of sandbox/vm so whatever running there should remain contained. The Java vm is poorly designed, totally flawed from the inside out or has too much unfixed exploits.

GP007 said,
Java at it again.

and this time again it was targeting both Windows and OSX.

AFAIK, most Facebook employees are using OSX, probably believing they are safe from malwares.

Looks like malware developers are starting to love osx too.

Hope so , although IRC has been rather quiet. I long for the day FB gets some..... Tango Down !!11!!! Will be lulz worthy +9000