Go Back   MacRumors Forums > News and Article Discussion > MacRumors.com News Discussion

 
 
Thread Tools Search this Thread Display Modes
Prev Previous Post   Next Post Next
Old Feb 20, 2013, 11:28 AM   #1
MacRumors
macrumors bot
 
Join Date: Apr 2001
iPhoneDevSDK Details What Led to Apple, Facebook Hacking




In January, a number of Apple employees had their Macs compromised following visits to the popular iPhoneDevSDK forum. Employees from Facebook and likely dozens of other companies were compromised as well. In a blog post today, site owner Ian Sefferman shared some limited details* about what happened and what the site is doing about it.

Most notably, the attack was reportedly ended by the hacker on January 30, 2013, meaning the site believes that there is no ongoing threat.

Quote:
What we've learned is that it appears a single administrator account was compromised. The hackers used this account to modify our theme and inject JavaScript into our site. That JavaScript appears to have used a sophisticated, previously unknown exploit to hack into certain user's computers.

We're still trying to determine the exploit's exact timeline and details, but it appears as though it was ended (by the hacker) on January 30, 2013.

As with Facebook, it's important to stress that we have no reason to believe user data was compromised.
Eric Romang has done some additional detective work on the the attack, laying much of the blame on Java itself. Last month, Apple twice blocked Java 7 from working on users' Macs, perhaps after the company discovered that its own machines had been compromised.

* URL to blog post: http://iphonedevsdk.com/forum/site-news-announcements/111889-iphonedevsdk-compromised-what-happened-and-how-we-are-dealing-with-it.html -- We've avoiding linking it due to the recent hack at that site.

Article Link: iPhoneDevSDK Details What Led to Apple, Facebook Hacking
MacRumors is offline   0 Reply With Quote

 
MacRumors Forums > News and Article Discussion > MacRumors.com News Discussion

Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes

Similar Threads
thread Thread Starter Forum Replies Last Post
Apple Employees Hacked By Visiting iPhoneDevSDK MacRumors MacRumors.com News Discussion 63 Feb 20, 2013 09:14 PM
Where can I see all my Apple account details? desertman Mac Basics and Help 5 Feb 19, 2013 05:18 PM
People who Know A Lot About Hacking/Encryption. What do U Think About Apple's Claims VideoNewbie iPhone 22 Oct 14, 2012 07:37 PM
iPhoneDevSDK gone? KarlJay App Store Business, Legal and Marketıng 51 Jul 19, 2012 05:48 AM

Forum Jump

All times are GMT -5. The time now is 07:19 PM.

Mac Rumors | Mac | iPhone | iPhone Game Reviews | iPhone Apps

Mobile Version | Fixed | Fluid | Fluid HD
Copyright 2002-2013, MacRumors.com, LLC