Tuesday, March 12, 2013
Attacks on Microsoft and Facebook were made with sites mobile developers
As reported by The Security Ledger, have now become aware of the details of recent attacks on computer systems of large companies such as Apple, Facebook, Microsoft and Twitter. Victims of attacks have also become well-known car manufacturers, government agencies and the U.S. confectionery company.
It is known that to penetrate the computer network attackers used a third-party websites, and technology «watering hole».
"The variety of activities victims may not accurately distinguish, on what kind of industry were aimed attackers," - said the director of security Facebook Joe Sullivan.
Over the last few months the victims of such attacks was approximately 40 companies. Presumably, the attack sources are in Eastern Europe or China.
Have not been able to find out whether the company attacked by a group of hackers, or they were all isolated cases.
It is known that for the hacked websites used mobile application developers, one of which - iPhoneDevSDK.com. Another portal dedicated to developing applications for Android-devices. Experts suspect that the penetration of the computer systems of victims was carried out through the use of plug-in vulnerabilities in Java. Subsequently, the company's employees were infected PC Trojans.
It is noted that the victims of the attacks were not all users visiting sites compromised by hackers, but only to a certain category.
Currently, neither of the victim, no IT-specialists do not provide detailed information on the results of the investigation, because they want to first "to get the full picture" of security incidents. However, they can not do so because the victims do not easily share information with each other.