The world's biggest data breaches and hacks of 2013

The world's biggest data breaches and hacks of 2013

Summary: From Facebook to Adobe, 2013 has been a tough year for companies looking to defend against cybercrime.

SHARE:
TOPICS: Security, Malware
3

 |  Image 4 of 15

  • Thumbnail 1
  • Thumbnail 2
  • Thumbnail 3
  • Thumbnail 4
  • Thumbnail 5
  • Thumbnail 6
  • Thumbnail 7
  • Thumbnail 8
  • Thumbnail 9
  • Thumbnail 10
  • Thumbnail 11
  • Thumbnail 12
  • Thumbnail 13
  • Thumbnail 14
  • Thumbnail 15
  • Facebook

    In February this year, the world's largest social network suffered a sophisticated attack caused by a zero day vulnerability.

    Facebook said there was "no evidence" that user data was compromised by the cyberattack, which was caused when a number of the social network's employees visited a mobile developer website infected with malicious code. Malware was then installed on these employee's laptops, and the Java-based zero day exploit was able to bypass security systems that keep applets away from system files. As a result, hackers may have been able to access the internal Facebook corporate network.

    Law enforcement was notified and the hack investigation is ongoing. 

    However, this wasn't the end for Facebook's year of being a cyberattack target. Facebook said in a blog post on June 21 that as part of its White Hat scheme -- which rewards notices of system vulnerabilities -- a bug that may have allowed some of a person's contact information (email or phone number) to be accessed by people who either had some contact information about that person or some connection to them. Approximately 6 million Facebook users had email addresses or telephone numbers shared without their consent before the bug was fixed.

    Read also: 

  • Apple

    In February, Apple experienced a breach on its corporate servers after employee computers were hit with malware, funnelled through a vulnerability in the Java Web plug-in. This attack took place only a week after Facebook was hit with a similar attack. 

    On February 19,  the iPhone and iPad maker announced the company was working with law enforcement agencies to investigate the security breach, but there was "no evidence that any data left Apple." The tech giant said in a statement:

    "Apple has identified malware which infected a limited number of Mac systems through a vulnerability in the Java plug-in for browsers. The malware was employed in an attack against Apple and other companies, and was spread through a website for software developers. We identified a small number of systems within Apple that were infected and isolated them from our network."

    A Java malware removal tool was released the same day to prevent Mac users from being hit with the same cyberattack, and Oracle subsequently patched the exploit.

    Image credit: Apple

  • Twitter

    Yet another attack in February took place, this time against popular microblogging platform Twitter. 

    In a blog post, Twitter said "unusual access patterns" allowed the company to discover attacks on Twitter data. The subsequent investigation found that the usernames, email addresses, session tokens and encrypted versions of passwords for 250,000 users were potentially placed at risk.

    The firm said that the cyberattack "was not the work of amateurs," and was unlikely to be an isolated scenario. 

    As a result, Twitter reset passwords for these accounts, notifying those impacted via email. In addition, the social network suggested that Java be disabled on user browsers. 

    Following the breach, Twitter rolled out support for two-factor authentication to bolster security. 

    See also:

Topics: Security, Malware

Kick off your day with ZDNet's daily email newsletter. It's the freshest tech news and opinion, served hot. Get it.

Related Stories

Talkback

3 comments
Log in or register to join the discussion
  • Merry Xmas....

    Again, your editors have put your hard work and talent into an unacceptable 'Slide Show' format.

    And, as yur editors well know, I ( and mnost other tech's) canhnot or will not read it.

    Time to clean up your resume, if you haven't already done so.
    Leo Regulus
    • rep: Merry Xmas

      time to give auto pager a try :D
      Hip Pham
  • Slide Show Stopper

    I agree with Leo Charlie. Tell ZDNet (and TechNet) to lose the slideshow format. Stops me every time.
    Governerd