iPhoneDevSDK Details What Led to Apple, Facebook HackingIn January, a number of Apple employees had their Macs compromised following visits to the popular iPhoneDevSDK forum. Employees from Facebook and likely dozens of other companies were compromised as well. In a blog post today, site owner Ian Sefferman shared some limited details* about what happened and what the site is doing about it. Most notably, the attack was reportedly ended by the hacker on January 30, 2013, meaning the site believes that there is no ongoing threat. What we've learned is that it appears a single administrator account was compromised. The hackers used this account to modify our theme and inject JavaScript into our site. That JavaScript appears to have used a sophisticated, previously unknown exploit to hack into certain user's computers. We're still trying to determine the exploit's exact timeline and details, but it appears as though it was ended (by the hacker) on January 30, 2013. As with Facebook, it's important to stress that we have no reason to believe user data was compromised.Eric Romang has done some additional detective work on the the attack, laying much of the blame on Java itself. Last month, Apple twice blocked Java 7 from working on users' Macs, perhaps after the company discovered that its own machines had been compromised. * URL to blog post:
http://iphonedevsdk.com/forum/site-news-announcements/111889-iphonedevsdk-compromised-what-happened-and-how-we-are-dealing-with-it.html -- We've avoiding linking it due to the recent hack at that site. Recent Mac and iOS Blog Stories • Apple to Target Emerging Markets with Low-Cost Phone to Launch in September at $199? • Jony Ive on How Product Naming Influences Design Philosophy • Director Ran Out of Money, Finished Shooting his Oscar-Nominated Movie on an iPhone • Sunrise Redesigns the Calendar Experience on iOS, Integrating Facebook, LinkedIn and Google Calendars • Evasi0n Jailbreak Works with iOS 6.1.2, 1.4 Update Coming Later Today • Apple TV Launches in India Following iTunes Store Launch • Microsoft Surface Pro Hacked to Run OS X...Maybe • IMDb Updates App with Oscar Section and Amazon Instant Video Links
http://www.macrumors.com/2013/02/20/iphonedevsdk-details-what-led-to-apple-facebook-hacking/
