Facebook was hacked last month, according to a statement posted online today, after company employees visited an infected website.
According to the statement, Facebook was victimized by the same zero-day Java vulnerability that has affected other companies. Although Facebook is framing it as a “sophisticated attack,” AllThingsD wonders whether the malware found on employee’s laptops was related into a recent hack on Twitter.
In the statement, the company said it “found no evidence that Facebook user data was compromised.”
Last month, Facebook Security discovered that our systems had been targeted in a sophisticated attack. This attack occurred when a handful of employees visited a mobile developer website that was compromised. The compromised website hosted an exploit which then allowed malware to be installed on these employee laptops. The laptops were fully-patched and running up-to-date anti-virus software. As soon as we discovered the presence of the malware, we remediated all infected machines, informed law enforcement, and began a significant investigation that continues to this day.