Facebook Hacked in ‘Sophisticated Attack,’ Company Reveals

Facebook announced today that its internal computer network was breached in “a sophisticated attack” last month, but no user data was stolen.

Facebook revealed Friday that it has become a target of a hacker attack who exploited a previously unknown breach in its computer system. Photo: West McGowan/Flickr

The social networking giant reported that malware had crashed its inner computer systems after employees had visited the website of a mobile applications developer that was “compromised.”

However, Facebook insisted that no personal data of users had been stolen by the hacking attack, reports The Telegraph.

“As soon as we discovered the presence of the malware, we remediated all infected machines, informed law enforcements, and began a significant investigation that continues to this day,” the company said in a blog post Friday.

“Facebook was not alone in this attack,” the post said. “It is clear that others were attacked and infiltrated recently as well. As one of the first companies to discover this malware, we immediately took steps to start sharing details about the infiltration with the other companies and entities that were affected.”

“We plan to continue collaborating on this incident through an informal working group and other means,” the Californian company added.

Facebook added that it was working with its own specialists and outside security experts to “learn everything we can about the attack, and how to prevent similar incidents in the future.”

This attack is the latest one in a series of sophisticated hacking attacks on high-profile websites and companies.

One more social networking site Twitter reported earlier this month that the personal data of about 250,000 users were stolen by hackers. It said it was “not the work of amateurs”.

The New York Times, Washington Post and Wall Street Journal have all claimed that Chine is to blame for attacking their computer systems.

A report published earlier this week by US intelligence community suggested that the country was being targeted by a massive cyber-espionage campaign.

The social networking giant revealed that hackers used a previously unseen loophole to attack the system, taking advantage of a flaw in Java software made by Oracle, a mobile developer.

Oracle has been highly criticized for flaws in Java – a programming language quite popular among website designers – that is often used by hackers to break into users’ computers and install malware.

As The Huffington Post reports, the Russian security company Kaspersky Lab has revealed  that Oracle’s Java software was responsible for about half of all cyber attacks last year.

Security experts and the Department of Homeland Security advise users to disable Java from their Web browsers.

Facebook also said the malware attacked its employee laptops despite high-profile antivirus software. It added that it was continuing to investigate the threat.

A statement on its website said: “Facebook, like every significant internet service, is frequently targeted by those who want to disrupt or access our data and infrastructure.”

“Foremost, we have found no evidence that Facebook user data was compromised.”

It was unknown whether the attack on Twitter could be related to the Facebook breach.

“As part of our ongoing investigation, we are working continuously and closely with our own internal engineering teams, with security teams at other companies, and with law enforcement authorities to learn everything we can about the attack, and how to prevent similar incidents in the future,” Facebook in its statement.

Share this article

We welcome comments that advance the story directly or with relevant tangential information. We try to block comments that use offensive language, all capital letters or appear to be spam, and we review comments frequently to ensure they meet our standards. If you see a comment that you believe is irrelevant or inappropriate, you can flag it to our editors by using the report abuse links. Views expressed in the comments do not represent those of Coinspeaker Ltd.