Hackers have hit Adobe hard with an attack that Adobe believes resulted in the compromise of 2.9 million Adobe customer accounts, including access to “customer names, encrypted credit or debit card numbers, expiration dates, and other information relating to customer orders.”
In a statement to customers, Adobe had the following to say about the attack:
We recently discovered that attackers illegally entered our network. The attackers may have obtained access to your Adobe ID and encrypted password. We currently have no indication that there has been unauthorized activity on your account. If you have placed an order with us, information such as your name, encrypted payment card number, and card expiration date also may have been accessed. We do not believe any decrypted card numbers were removed from our systems.
To prevent unauthorized access to your account, we have reset your password. Please visit www.adobe.com/go/passwordreset to create a new password. We recommend that you also change your password on any website where you use the same user ID or password. As always, please be cautious when responding to any email seeking your personal information.
To be clear, this is NOT just Adobe Creative Cloud customers, this is possibly anyone who has ever signed up for a free Adobe account to do things as simple as download a free software trial from Adobe’s website.
Adobe recommends that users login and reset their passwords for their Adobe accounts.
One of the questions on Adobe’s FAQ page reads: “Adobe seems to ahve a lot of security issues. Why is that?” Adobe’s response:
Cyber attacks are one of the unfortunate realities of doing business today. Given the profile and widespread use many of our products, Adobe has attracted increasing attention from cyber attackers. We are working diligently internally, as well as with external partners and law of enforcement, to address the incident. We value the trust of our customers and will work aggressively to prevent these types of events from occurring in the future.
You can learn more about the attack and how to reset your Adobe account info here on Adobe’s website.