Adobe was hacked, 2.9 million accounts compromised

Adobe

Adobe announced Thursday, October 3, 2013, that it had suffered a major security breach. Attackers accessed Adobe Customer ID’s, passwords, encrypted credit card numbers, expiration dates, and other customer order related information. The attackers also illegally accessed source code for several of it’s products.

“Our investigation currently indicates that the attackers accessed Adobe customer IDs and encrypted passwords on our systems. We also believe the attackers removed from our systems certain information relating to 2.9 million Adobe customers, including customer names, encrypted credit or debit card numbers, expiration dates, and other information relating to customer orders. At this time, we do not believe the attackers removed decrypted credit or debit card numbers from our systems. We deeply regret that this incident occurred. We’re working diligently internally, as well as with external partners and law enforcement, to address the incident. “
– Brad Arkin, Adobe’s chief security officer, wrote in a security alert

What is Adobe doing about it?

  • Notifying customers and resetting passwords
  • Alerting banks processing Adobe payments to help protect customer accounts
  • Working with federal law enforcement on its related investigation

What should you do?

  • Reset your account password at http://www.adobe.com/go/passwordreset
  • Change the email address associated with your account
  • Change the password(s) for any other account that uses the same email address
  • Monitor your bank accounts, credit card statements, and credit report

Attached is the security alert email that was sent to the effected users.
Adobe Security Alert