PetaPixel

Adobe Admits to Being Hacked, 2.9M User Accounts Compromised

creativecloud1

Adobe users who have purchased a product or signed up for Creative Cloud recently beware. According to Adobe’s website, the company’s servers were hacked “very recently,” and the attackers made away with customer information from 2.9 million Adobe accounts, as well as source code for a few Adobe products.

Adobe isn’t disclosing when exactly this happened, but the company is admitting that the hackers managed to pull “customer IDs, encrypted passwords… names, encrypted credit or debit card numbers, expiration dates, and other information relating to customer orders” from some 2.9 million users’ accounts — Adobe is in the process of notifying affected customers by email.photoshopcc

The good news (if you can call it that) is that Adobe doesn’t believe the hackers got any decrypted financial information, so even though we suggest Adobe CC subscribers keep a closer eye on their bank and CC accounts over the next few weeks, you should be ok.

Regardless, Adobe still isn’t willing to take any chances where customer info is concerned. In addition to working with financial institutions to protect customers’ accounts, the company is also resetting all Adobe ID passwords affected.

Those whose financial info was compromised will also receive a letter detailing steps they might take to help protect themselves, as well as one year of free credit monitoring so you can be sure nothing fishy is going on.

Adobe CC Splash logoThe source code breach, which Adobe believes might have been related, has less to do with us photographic types. Apparently the cyber thieves stole source code from “Acrobat, ColdFusion, ColdFusion Builder and other Adobe products.”

Thankfully, this particular breach requires no further action as Adobe “[is] not aware of any specific increased risk to customers as a result of this incident.” We’ll call that the silver lining.

For more info on either security breach, head over to the Adobe blog by clicking here (customer info theft) or here (source code theft). As we mentioned above, if you were affected by the hack, you should shortly (if you haven’t already) receive an e-mail from Adobe notifying you.


 
  • Marius Budu

    Oopsie!

    Any company is prone to attacks on their servers though bu the fact that the hackers went for financial info is a bit alarming…

  • Guest

    All I can think of is a great, big Nelson Muntz “Ha ha!”

  • Rob Elliott

    when they go after source code and client information from a company making 20-50 million a month in revenue who has told its clients you must give us this information and we will do all updates by notifications… it suggests that they are not using the money to make sure the protect information. I do expect them to take some of those Millions of dollars in monthly revenue and actually protect the information that are forcing people to give.

    It seems to be all encrypted which is positive but if they got the encryption info too that is a lot of issue.

    I’m also disturbed that it for 18 hours for adobe to notify me.

  • Michael Rasmussen

    Given the fixed patterns and small character data set in credit card numbers it can be assumed that the bulk of them will soon be decrypted.

  • The Dread Pirate Roberts

    Well Golly G. Willikers! You mean this cloud based, membership stuff was vulnerable to hackers & ID theft?

    I guess we’re just better off sailing into that big ol’ Bay to get our Adobe products, right matey?

    Arggggg!

  • Alan Klughammer

    or use and support a different platform. Why encourage Adobe if you don’t like their business model?

  • http://www.negativespacelondon.com/ NegativeSpace

    Ouch… 2.9 Million people is a pretty big number…. :/

  • MJ Coffey

    If only Adobe had listened to its customers..
    Nobody wants a cloud-based subscription model. Why? Because it’s insecure as hell.

    Hope they learn from it. :|

  • pete n pete

    So we can be expecting a crack for CC that disables the monthly check-in with the mothership soon?

  • aardvarked

    Anyone is prone to attacks, I’m pretty sure they invest a significant amount in security measures.

  • Joey

    I don’t think torrenting adobe products is encouraging.

  • Joey

    Dude. Its been out since about 3 days after release.

  • pete n pete

    Hrm. TO THE TORRENTS!

  • Mick O

    You say this as if Adobe wouldn’t have credit card and customer information for people who bought a single perpetual license. This has zero to do with Creative Cloud.

  • Leonardo Abreu

    Time to learn, Adobe.

  • Alan Klughammer

    sure it is, you are using and learning the quirks of that software. If you teach anyone, or want to learn, you are encouraging that ecosystem. even if you are not paying, you are still supporting the use of that software. If you start to learn another system, say PhotoPaint, or Gimp, you can provide feedback, or just tell others what you are using.

  • AJ

    Nice try, Adobe PR guy.

  • Carl Meyer

    Crack at launch date shows the type of security one can expect from Adobe.

  • Chris

    They wouldn’t need to store that credit card info for a monthly payment system. In fact, storing it over a normal 2-3yr product cycle would be irresponsible and costly

  • facepalm

    GIMP.

  • nerdbomber

    Karma.

  • http://www.bradtrent.com Brad Trent

    As someone who has been vehemently anti-Cloud from day one ( http://damnuglyphotography.wordpress.com/2013/05/13/why-we-all-must-fight-adobe-and-stop-the-creative-cloud ) this news just makes me laugh.

  • Kevin Sharp

    Well as someone who is upset by Adobes decision to switch to a subscription based service, this really doesn’t help their case. I might start looking for alternative editing tools

  • Pete

    “Go to the cloud!” they said. “It will be better!” they said.

  • Rob Elliott

    and yet 2.9 million users are affected and part of the source code for several pieces of software accessed.

    This isn’t a little breech and one that they should have been prepared for, but weren’t. It shows a pattern of short term thinking on a long term plan, and it doesn’t bold well.. (coming from a CC subscriber coming up to the end of their first year)

  • markz

    ’cause all those people who buy their other other adobe products online couldn’t possibly be affected…

    my credit card details were taken by this (the bank won’t , isn’t allowed to, say that but basic deduction: new card, one, single, online purchase (to Adobe for Lightroom) with in a couple of hours of the news hitting Web security sites bank blocks card as “compromised”)

    granted the subscription model blows every kind of chunk there is but shezze a bit of common sense (ops sorry internet her I should have remembered that).

  • https://twitter.com/adamhowardcross Adam Cross

    whoops. still happy to stay with CS6

  • Barkingghost

    How is it that only Creative Cloud customers were affected? I have yet to signup for any CC, but as a CS5 and LR5 registered user, I was planning on taking Adobe up on their photographers-specific CC offering before the end of the year (when the $10/month offer ends).

    This just makes me put my plans on hold.

  • Eugene Chok

    glad to meet one of the reasons the rest of us pay more for our products

  • pete n pete

    Don’t act all high and mighty – we all know you touch yourself at night in the dark.

  • Bp

    To let you know Adobe has known about this since August. They didnt want to say anything for fear or ruining their stock from their investors during their third quarterly report that was published in late September. The only reason they admitted the issue, was due to the third part security company who spoke out.
    I used to love Adobe and been using them for over 17 years but now its just full of corporate hacks. I use cinema 4D but because of the subscription and liquid features Blender (free) is looking better and better…time for open source. The only real benefit of the subscription model is that it forced me to look at other workflows and software..Im glad i did

  • Eugene Chok

    what ever you are just a cheap dick

  • pete n pete

    I prefer the term “frugal wang.”