Yesterday, I posted a story about some of Apple's HQ computers being hacked thanks to a Java vulnerability exploit. Today, a Forbes report came out about the site where it all began: iPhoneDevSDK.com (*Note: You shouldn't visit this site at the moment as it still may be compromised) According to the report, co-founder of the victim site Ian Sefferman, has confirmed that his site was used in this so-called "watering hole" attack:
"Sefferman writes that an administrator account for the site was hijacked to add javascript code that 'appears to have used a sophisticated, previously unknown exploit to hack into certain user's computers.' "
Facebook, Apple, and Twitter (who experienced a similar breach before) all said (or hinted in the case of Twitter) that Java was involved. Also, based off yesterday's Bloomberg report, it is believed that the hackers are based in Eastern Europe and that up to 40 companies may have been targeted.
Right now is a good time to disable Java plug-ins in your browser (if you haven't already done so). And based on all the recent exploits, it may be a good idea to keep it disabled. Oh, and always remember to protect your computers with advanced internet security!
http://community.webroot.com/t5/image/serverpage/image-id/1972iE939BB9BE0BEACEA/image-size/medium?v=mpbl-1&px=-1(Source: Forbes)
--Yegor P--
Social Online Support Engineer
iPhone Developer Site was Gateway to FB & Apple Hacks
Be the first to reply!
Reply
Login to the community
No account yet? Create an account
Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.