The Verge - Cyber criminals exploit Java vulnerability to hack Apple, Facebook, and Twitterhttps://cdn.vox-cdn.com/community_logos/52801/VER_Logomark_32x32..png2013-02-27T11:08:01-05:00http://www.theverge.com/rss/stream/37709092013-02-27T11:08:01-05:002013-02-27T11:08:01-05:00Foreign hackers steal more than a terabyte of data per day in ongoing cyberwar
<figure>
<img alt="via <a href="http://assets.sbnation.com/assets/2243371/hacker-stock1_2040.jpg">assets.sbnation.com</a>" src="https://cdn.vox-cdn.com/thumbor/akZHbyVVYS_fK3DCEUgenlmkGJE=/3x0:1097x729/1310x873/cdn.vox-cdn.com/imported_assets/1463797/hacker-stock1_2040.jpg" />
<figcaption>via <a href="http://assets.sbnation.com/assets/2243371/hacker-stock1_2040.jpg">assets.sbnation.com</a></figcaption>
</figure>
<p>Two decades after computer security began generating billions by selling expertise and software designed to protect unwanted network intrusions, experts say those networks are more vulnerable than ever. Florida-based Internet security firm Team Cymru said in a <a href="http://www.team-cymru.com/Services/EIS/" target="_blank">report released today</a>, shared exclusively with <i>The Verge</i>, that analysts there uncovered a massive overseas hacking operation that is making off with a terabyte of data per day. Some of the victims include military and academic facilities and a large search engine. The report doesn't identify who might be behind the attacks, but Team Cymru director Steve Santorelli conceded that, given the amount of resources behind the attacks, it is obvious the group is state-sponsored. "This is...</p>
<p>
<a href="https://www.theverge.com/2013/2/27/4035378/new-report-finds-hackers-stealing-terabyte-daily">Continue reading…</a>
</p>
https://www.theverge.com/2013/2/27/4035378/new-report-finds-hackers-stealing-terabyte-dailyGreg Sandoval2013-02-22T12:30:04-05:002013-02-22T12:30:04-05:00After so many hacks, why won't Java just go away?
<figure>
<img alt="Java Duke by <a href="http://kenai.com/projects/duke/">Project Kenai</a>" src="https://cdn.vox-cdn.com/thumbor/5FxgW1FUv3YJ5mFSkzAmrMQ1V8M=/0x11:695x474/1310x873/cdn.vox-cdn.com/assets/2217187/Screen_shot_2013-02-22_at_10.18.05_AM.png" />
<figcaption>Java Duke by <a href="http://kenai.com/projects/duke/">Project Kenai</a></figcaption>
</figure>
<p>If you've been paying any attention to the security breaches hitting <a href="http://www.theverge.com/web/2013/2/19/4006868/hackers-exploit-java-vulnerability-apple-facebook-twitter" target="new">Apple</a>, <a href="http://www.theverge.com/2013/2/15/3993398/facebook-hacked-but-found-no-evidence-that-user-data-was-compromised" target="new">Facebook</a>, <a href="http://www.theverge.com/2013/2/1/3942660/twitter-was-also-attacked-this-week-passwords-for-up-to-250000-users-compromised" target="new">Twitter</a>, <a href="http://www.theverge.com/2013/2/21/4015040/hackers-exploit-nbc-website-to-spread-malware" target="new">NBC</a>, and others these past few weeks, you've probably noticed a common culprit: our poor old pockmarked friend, <a href="http://www.theverge.com/tag/java" target="_blank">Java</a>.</p>
<p>As a web plugin, Oracle's aging code deployment platform has practically been a revolving door for widespread malware attacks recently, and for years the general consensus has often been that its risks have outgrown its usefulness. After spending a week Java-free back in 2010, <em>PCMag</em>'s Larry Seltzer <a target="new" href="http://www.pcmag.com/article2/0,2817,2365365,00.asp">concluded</a> that the Java platform as a whole "is pretty clearly a failure, and all that remains of it is a big fat attack surface on your computer."</p>
<p>The situation doesn't look to be getting any better: since last year, zero-day...</p>
<p>
<a href="https://www.theverge.com/2013/2/22/4016582/after-so-many-hacks-why-wont-java-just-go-away">Continue reading…</a>
</p>
https://www.theverge.com/2013/2/22/4016582/after-so-many-hacks-why-wont-java-just-go-awayJanus Kopfstein2013-02-20T15:54:47-05:002013-02-20T15:54:47-05:00Website allegedly behind hacks of Facebook, Apple, and Twitter says it's 'clean now'
<figure>
<img alt="Facebook Security" src="https://cdn.vox-cdn.com/thumbor/r2KRZmzYqT2ylmMY1uegpdZEVtk=/0x0:1100x733/1310x873/cdn.vox-cdn.com/assets/2175287/facebooksecurity1_2040.jpg" />
<figcaption>Facebook Security</figcaption>
</figure>
<p>The owner of iPhone developer website iPhoneDevSDK says his team has patched a security hole behind <a href="http://www.theverge.com/2013/2/19/4006446/apple-and-facebook-hacks-traced-to-mobile-development-site-allthingsd" target="_blank">malware</a> that <a href="http://www.theverge.com/2013/2/15/3993398/facebook-hacked-but-found-no-evidence-that-user-data-was-compromised" target="_blank">infected employee computers</a> at Facebook, making the developer site safe to visit again.</p>
<p>"It is clean now," said Ian Sefferman, iPhoneDevSDK's owner and operator, in an email to <i>The Verge. </i>Sefferman and his colleagues are still trying to figure out exactly what went wrong and how to keep their site and its 200,000 registered users secure from hackers in the future. Malware found on employee computers at <a href="http://www.theverge.com/2013/2/19/4005460/apples-computers-attacked-by-hackers-says-reuters">Apple</a> and <a href="http://www.theverge.com/2013/2/1/3942660/twitter-was-also-attacked-this-week-passwords-for-up-to-250000-users-compromised">Twitter</a> also may have come from the site while it was compromised.</p>
<p><q class="center">"It is clean now."</q></p>
<p>"In the short term, we've reset all user passwords just in case (though we don't have any evidence that user data was...</p>
<p>
<a href="https://www.theverge.com/2013/2/20/4009688/website-likely-hack-facebook-apple-twitter-says-clean-now">Continue reading…</a>
</p>
https://www.theverge.com/2013/2/20/4009688/website-likely-hack-facebook-apple-twitter-says-clean-nowCarl Franzen2013-02-19T19:40:21-05:002013-02-19T19:40:21-05:00Apple, Facebook, and Twitter hacks reportedly originated in Eastern Europe
<figure>
<img alt="via <a href="http://assets.sbnation.com/assets/1608295/retina-macbook-pro-15-stock_1020.jpg">assets.sbnation.com</a>" src="https://cdn.vox-cdn.com/thumbor/6CEoXlufqW6XR_7fv_pJB2xztmg=/0x0:1020x680/1310x873/cdn.vox-cdn.com/imported_assets/1450291/retina-macbook-pro-15-stock_1020.jpg" />
<figcaption>via <a href="http://assets.sbnation.com/assets/1608295/retina-macbook-pro-15-stock_1020.jpg">assets.sbnation.com</a></figcaption>
</figure>
<p>The recent <a href="http://www.theverge.com/2013/2/19/4005460/apples-computers-attacked-by-hackers-says-reuters">attacks on Apple’s systems</a> originated in Russia or Eastern Europe, and are linked to similar attacks on <a href="http://www.theverge.com/2013/2/15/3993398/facebook-hacked-but-found-no-evidence-that-user-data-was-compromised">Facebook</a> and <a href="http://www.theverge.com/2013/2/1/3942660/twitter-was-also-attacked-this-week-passwords-for-up-to-250000-users-compromised">Twitter</a>, say new reports from <a target="_blank" href="http://www.reuters.com/article/2013/02/20/us-apple-hackers-idUSBRE91I10920130220?feedType=RSS&feedName=technologyNews&utm_source=dlvr.it&utm_medium=twitter&dlvrit=56505">Reuters</a> and <a target="_blank" href="http://www.bloomberg.com/news/2013-02-19/apple-says-a-small-number-of-mac-computers-infected-by-malware.html">Bloomberg</a>. The goal of the attacks is said to be company secrets and intellectual property to be sold on the black market, unlike the the <a href="http://www.theverge.com/2013/2/18/4003732/chinese-cyber-attacks-on-us-corporations-tied-to-army-base">state-sponsored attacks</a> coming out of China, which have instead focused on government secrets and national infrastructure.</p>
<p>In all cases, employees’ computers were compromised after accessing the mobile developer website iphonedevsdk.com, which exploited a vulnerability in the Java browser plugin. While the precise location and nationality of the attackers is unknown, investigators have discovered at least one server in use by the...</p>
<p>
<a href="https://www.theverge.com/2013/2/19/4006898/apple-facebook-twitter-attacks-originated-in-eastern-europe">Continue reading…</a>
</p>
https://www.theverge.com/2013/2/19/4006898/apple-facebook-twitter-attacks-originated-in-eastern-europeJeff Blagdon2013-02-19T17:21:05-05:002013-02-19T17:21:05-05:00Apple and Facebook hacks traced to mobile development site, says AllThingsD
<figure>
<img alt="Apple Retina MacBook Pro 15 STOCK" src="https://cdn.vox-cdn.com/thumbor/Pe0-U7NQXb6q17nSvCnPUx0XqDA=/0x0:1020x680/1310x873/cdn.vox-cdn.com/assets/1608295/retina-macbook-pro-15-stock_1020.jpg" />
<figcaption>Apple Retina MacBook Pro 15 STOCK</figcaption>
</figure>
<p><i>AllThingsD </i>is reporting that the culprit behind high-profile hacks targeting Apple and Facebook<a href="http://allthingsd.com/20130219/this-is-the-site-likely-responsible-for-the-recent-major-tech-company-hacks/" target="_blank"> is "likely" a website called iPhoneDevSDK</a>. The site, which is a hub for iOS and mobile development discussion, was reportedly injected with malicious code according to the report. Employees at Facebook apparently visited the iPhoneDevSDK website in recent weeks, just prior to a hack that the social network <a href="http://www.theverge.com/2013/2/15/3993398/facebook-hacked-but-found-no-evidence-that-user-data-was-compromised">made public last Friday</a>. <i>AllThingsD</i> suspects the same developer resource is responsible for an intrusion that <a href="http://www.theverge.com/2013/2/19/4005460/apples-computers-attacked-by-hackers-says-reuters">comprised "a limited number" of Apple's internal computers</a>. An exploit affecting Oracle's Java plugin served as a gateway for attackers in both instances. A <a href="http://forums.macrumors.com/showthread.php?t=1403975" target="_blank">discussion thread at<i> MacRumors</i></a><i> </i>suggests that iPhoneDevSDK has encountered...</p>
<p>
<a href="https://www.theverge.com/2013/2/19/4006446/apple-and-facebook-hacks-traced-to-mobile-development-site-allthingsd">Continue reading…</a>
</p>
https://www.theverge.com/2013/2/19/4006446/apple-and-facebook-hacks-traced-to-mobile-development-site-allthingsdChris Welch2013-02-19T16:40:25-05:002013-02-19T16:40:25-05:00Apple releases Java update to eliminate malware threat
<figure>
<img alt="Apple Retina MacBook Pro Stock " src="https://cdn.vox-cdn.com/thumbor/8CNUKUTMrpxmPI7Z88RUCjyV7uw=/3x0:1017x676/1310x873/cdn.vox-cdn.com/assets/1276935/apple-macbook-stock-logo_1020.jpg" />
<figcaption>Apple Retina MacBook Pro Stock </figcaption>
</figure>
<p>Apple has released a new version of Java meant to plug a vulnerability that can be exploited to install malware on user's computers. The company <a href="http://www.theverge.com/2013/2/19/4005460/apples-computers-attacked-by-hackers-says-reuters">made an unprecedented announcement this morning</a>, admitting that hackers had effectively infected a "small number" of its computers after employees visited a website for software developers that contained the malicious code. Apple says it isolated those computers from its network, and promised that it would release a support tool today to patch the vulnerability. The update uninstalls Apple's Java applet plugin from all browsers, as well as the Java Preferences application, which it says is no longer needed to configure the applet's settings.</p>
<p>Users can obtain the Java update through Apple's...</p>
<p>
<a href="https://www.theverge.com/2013/2/19/4006328/apple-java-malware-patch">Continue reading…</a>
</p>
https://www.theverge.com/2013/2/19/4006328/apple-java-malware-patchT.C. Sottek2013-02-19T13:17:34-05:002013-02-19T13:17:34-05:00Apple says it was attacked by hackers, will issue malware removal tool today
<figure>
<img alt="apple iphone logo stock 1020" src="https://cdn.vox-cdn.com/thumbor/OErEzmDyBlboiSBT4kL5gxu1lsQ=/1x0:1018x678/1310x873/cdn.vox-cdn.com/assets/1332279/iphone__2_of_2_.jpg" />
<figcaption>apple iphone logo stock 1020</figcaption>
</figure>
<p>In a statement provided to <i>The Verge</i>, Apple says that hackers infected a "small number" of its computers in an attack that exploited a Java vulnerability. As <a href="http://www.reuters.com/article/2013/02/19/us-apple-hackers-idUSBRE91I10920130219" target="_blank"><i>Reuters </i>originally reported</a>, the company says "there was no evidence that any data left Apple," and no user information is said to have been compromised. Apple says the rare security breach utilized the same malware that was <a href="http://www.theverge.com/2013/2/15/3993398/facebook-hacked-but-found-no-evidence-that-user-data-was-compromised">recently used to target Facebook </a>and other companies. Despite being a high-profile target, the situation is highly unusual for Apple, and the company says it is working with law enforcement to track down those responsible.</p>
<p>"Apple has identified malware which infected a limited number of Mac systems through a vulnerability in the Java plug-in for browsers," the...</p>
<p>
<a href="https://www.theverge.com/2013/2/19/4005460/apples-computers-attacked-by-hackers-says-reuters">Continue reading…</a>
</p>
https://www.theverge.com/2013/2/19/4005460/apples-computers-attacked-by-hackers-says-reutersT.C. Sottek2013-02-15T16:47:29-05:002013-02-15T16:47:29-05:00Facebook hacked, but has found 'no evidence' that user data was compromised
<figure>
<img alt="Facebook Security" src="https://cdn.vox-cdn.com/thumbor/r2KRZmzYqT2ylmMY1uegpdZEVtk=/0x0:1100x733/1310x873/cdn.vox-cdn.com/assets/2175287/facebooksecurity1_2040.jpg" />
<figcaption>Facebook Security</figcaption>
</figure>
<p>As one of the largest sites on the internet, there's no doubt that Facebook is a prime target for hackers. It looks like some of those hackers were apparently successful — Facebook has just admitted that its systems were targeted last month in a "sophisticated attack." However, the company was quick to point out that "we have found no evidence that Facebook user data was compromised." It sounds like users have no need to worry at this point, but Facebook is continuing to work with its internal engineering teams, security teams at other companies targeted by the attack, and law enforcement officials in an effort to make sure such an attack doesn't happen again.</p>
<p>As for the attack itself, Facebook says that a "handful" of employees visited...</p>
<p>
<a href="https://www.theverge.com/2013/2/15/3993398/facebook-hacked-but-found-no-evidence-that-user-data-was-compromised">Continue reading…</a>
</p>
https://www.theverge.com/2013/2/15/3993398/facebook-hacked-but-found-no-evidence-that-user-data-was-compromisedNathan Ingraham