On Friday, Facebook said that its internal computer network was breached in “a sophisticated attack” last month, but said no user data was compromised.
It appears the attack went down when employees of the social network visited an infected website belonging to a mobile developer. The compromised site downloaded malicious software, or malware, onto employees’ laptops but Facebook did not name the developer whose website caused the attack.
“As soon as we discovered the presence of the malware, we remediated all infected machines, informed law enforcement, and began a significant investigation that continues to this day,”
We have found no evidence that Facebook user data was compromised.
As part of our ongoing investigation, we are working continuously and closely with our own internal engineering teams, with security teams at other companies, and with law enforcement authorities to learn everything we can about the attack, and how to prevent similar incidents in the future.
Facebook Security has a team dedicated to tracking threats and monitoring our infrastructure for attacks at all times.