Hackers attack Facebook using Java flaw

By Nikhil Pradhan | Published on 18 Feb 2013

Facebook says no user data compromised, vulnerability already patched by new Java update.

Hackers attack Facebook using Java flaw

Want to modernise your banking loan application?

Build an application that analyses credit risk with #IBMCloud Pak for Data on #RedHat #OpenShift

Click here to know more


Facebook has revealed that it was the victim of a “sophisticated attack” that led to malware being installed on employees' computers. A Facebook security post reveals that the hackers exploited a previously undetected flaw in Java's built-in security mechanism to infect the developer site, which in turn infected the computers of the Facebook employees.

The Facebook post states that it has reported the matter to Oracle (the company behind Java) and that a security patch has already been issued to resolve the vulnerability. Facebook claims that it has found no evidence to suggest that any data pertaining to Facebook users has been compromised and reveals that it wasn't the only company to suffer from the attack. Although Facebook didn't reveal the names of the other companies that were also targeted, PC Mag points out that Twitter had also suffered a similar attack recently, one that it had blamed on Java browser plug-ins. However, in Twitter's case, the attack did result in user credentials being exposed.

Java has suffered the brunt of hacker attacks in recent weeks resulting in many companies either recommending users to turn off Java plug-ins in their browsers or outright banning Java plug-ins from working on browsers. Oracle was only able to get Apple to unblock Java from working on Safari after releasing multiple security updates within the span of a couple of weeks. Unfortunately, Java still remains an important component in many web applications and will undoubtedly remain the target of hackers in the future.

Sources: Facebook, PC Mag


Nikhil Pradhan


Digit caters to the largest community of tech buyers, users and enthusiasts in India. The all new Digit in continues the legacy of Thinkdigit.com as one of the largest portals in India committed to technology users and buyers. Digit is also one of the most trusted names when it comes to technology reviews and buying advice and is home to the Digit Test Lab, India's most proficient center for testing and reviewing technology products.

We are about leadership-the 9.9 kind! Building a leading media company out of India.And,grooming new leaders for this promising industry.

DMCA.com Protection Status