Passwords and other sensitive information from 3 million customers compromised.
Adobe announced that its corporate network has been compromised by hackers who managed to access source code for several software applications as well as password data and sensitive data belonging to almost 3 million customers.
The hackers stole 40GB of source code, including code belonging to ColdFusion Web application and the widely used Acrobat document program. Sensitive information stolen by the thieves included customer names, encrypted credit or debit card numbers, expiration dates, and other information relating to orders. Customer IDs and “encrypted” passwords for 2.9 million customers were also accessed by the hackers.
Infotex recommends the following measures be taken immediately:
- Make sure all Adobe assets are patched and up to date
- Stay on top of new updates and patches from Adobe
- If you have an account with Adobe, change your password
- If you use that password or similar passwords elsewhere, change them as well
Infotex believes password protected PDFs remain relatively safe FOR NOW. Even though the thieves have the algorithms, the keys are generated when the password is saved. This prevents the thieves from easily hacking the keys (barring normal password-cracking practices.)
Original article by Dan Goodin.
Read the full story here.