Twitter suggested that users disable Java, which has been subject to an endless stream of security vulnerabilities, without explicitly saying that Java served as the initial entrypoint for the attack.
FORBES: Facebook Hacked Via Java Vulnerability, Claims No User Data Compromised