04 Oct Adobe Reports Cyber Attack Breached Information for 2.9 Million Customers
On October 3, Adobe reported that cyber attacks enabled attackers to download the customer data of about 2.9 million customers, including customer names, encrypted credit or debit card numbers, and expiration dates. Adobe does not believe that decrypted credit or debit card information was removed from the Adobe systems.
The attacks also permitted the removal of source code information on Adobe products, including Adobe Acrobat, ColdFusion, and ColdFusion Builder. While Adobe isn’t aware of any “zero-day exploits” targeting Adobe products, they recommend the use of only supported versions of the software.
Adobe is resetting the passwords of affected customers, and has sent an email notification to those users with instructions on changing passwords and Adobe IDs. Adobe is also contacting customers whose credit or debit card information may have been compromised, and has notified banks processing Adobe customer payments. Federal law enforcement has also been contacted by Adobe.
Adobe has posted a security announcement on their website, as well as a blog post on the illegal access to their source code.