More bad news out of Santa Clara today. In a statment from spokesperson Heather Edell, Adobe addressed the likely fallout users will experience over the next few weeks as a result of a leak which took place from their servers back on October 3rd.
For the uninitiated; a group of hackers broke into Adobe’s servers and lifted the account details of nearly 3 million users several weeks ago, gaining access to customer’s credit card information, login data, and product licenses before anyone at the software giant had caught a scent that anything might be wrong.
“So far, our investigation has confirmed that the attackers obtained access to Adobe IDs and (what were at the time valid), encrypted passwords for approximately 38 million active users,” Edell said [emphasis added]. “We have completed email notification of these users. We also have reset the passwords for all Adobe IDs with valid, encrypted passwords that we believe were involved in the incident—regardless of whether those users are active or not.”
In addition to the 3 million compromised passwords, the netsec research publication KrebsOnSecurity estimates that tens of millions of other Adobe users could potentially have been exposed during what is turning out to be one of the biggest binary break-ins in the last half decade. The information stolen included source code for Adobe Acrobat and Reader, along with the ColdFusion web app program, as well as another 2.5GB file that appeared last week. Once cracked, it revealed a treasure trove: a large portion of code dedicated none other than their flagship application — Photoshop.
If you have ever purchased any Adobe products, it would be a good idea to change the password and registered email on your account sooner rather than later. Adobe suspects the back door is closed by now, but still suggests you take the necessary precautions to protect your identity and financial information online as they have no idea what the hackers intend to do with their haul once the heat eventually dies down.
One of the most foolproof methods of maintaining the security of your data online is to use a virtual private network, or VPN for short. Here and you’ll find a long list of providers, personally sorted from best reviewed to least by the experts and users at VPNCreative.net.