Do Microsoft use their own security solution to protect their business machines? If you combine recent test results for Microsoft Security Essentials with the news that the software giant have disclosed that they have been hacked then you may be forgiven for thinking that they must do!
But then again, according to Microsoft’s statement below, it actually appears that it wasn’t PCs that got attacked but rather Macs which is ironic considering how safe all the fanboys seem to think they are:
“As reported by Facebook and Apple, Microsoft can confirm that we also recently experienced a similar security intrusion.
Consistent with our security response practices, we chose not to make a statement during the initial information gathering process. During our investigation, we found a small number of computers, including some in our Mac business unit, that were infected by malicious software using techniques similar to those documented by other organizations. We have no evidence of customer data being affected and our investigation is ongoing.
This type of cyberattack is no surprise to Microsoft and other companies that must grapple with determined and persistent adversaries (see our prior analysis of emerging threat trends). We continually re-evaluate our security posture and deploy additional people, processes, and technologies as necessary to help prevent future unauthorized access to our networks.”
Whilst the exact nature of the attack is not described it is clearly suggested that what transpired was very similar to the recent experiences of Apple and Facebook which suggests that one or more employees may have visited the same iPhone developer website as in the case of those two companies. In any event it is a timely reminder to all personal and business computer users to disable Java unless it is absolutely 100% critical to their needs.