15 February 2013
Do you like this story?
They said that in January they had discovered that their systems had been targeted in a sophisticated attack. It occurred when a handful of employees visited a mobile developer site which was impaired. The site introduced an exploit which allowed malware to be installed on the laptops of the employees and these were fully patched, said Facebook.
And as soon as the attack was discovered, Facebook remediated all infected machines, informed law enforcement and began a serious investigation that continues still.
"We have found no evidence that Facebook user data was compromised." - Facebook.
In this instance, Facebook flagged a questionable domain in their corporate DNS logs and tracked it back to an employee laptop and when a forensic examination was made on the laptop , they found a malicious file. This paved a company wide search and found several other employee laptops attacked by this file.
Here's an extract from the Facebook blog post which says that Facebook was not the only victim of this attack.
Facebook was not alone in this attack. It is clear that others were attacked and infiltrated recently as well. As one of the first companies to discover this malware, we immediately took steps to start sharing details about the infiltration with the other companies and entities that were affected. We plan to continue collaborating on this incident through an informal working group and other means.
Source : https://www.facebook.com/notes/facebook-security/protecting-people-on-facebook/10151249208250766