Microsoft has announced via its Security Response Center blog that it has been the victim of a hacking similar in nature to those experienced by Apple and Facebook recently. Matt Thomlinson, General Manager of Trustworthy Computing Security at Microsoft, has penned a blog post on the matter.
Thomlinson makes reference to the Facebook and Apple hacking events by name, indicating that the vector for attack was the same. These incidents were perpetrated by utilizing a zero-day Java vulnerability injected into an iOS developer website without the owner’s knowledge.
Microsoft chose not to make a statement during the ‘initial information gathering process’, says Thomlinson. The investigation turned up a ‘small number’ of infected computers, including some in the Mac business unit. Thomlinson says that they were infected with malicious software using ‘similar techniques’ to those already documented by Facebook and Apple. Microsoft has no evidence of affected customer data at this time.
source: The Next Web