Back at the start of the month, Adobe reported that the company’s network had suffered a breach and that as a result the accounts of 2.9 million customers had been compromised. Sounds bad? It's worse than first thought. And not just a bit worse; much, much worse. Upon further analysis of the figures Brian Krebs of KrebsOnSecurity puts the numbers at 38 million user accounts.
We reported the security breach at the time, and it is amazing to discover that the figure of 2.9 million affected users is in fact more than ten times as high. So how could the figures have been misread to such an extent? Apparently, many of the directories of data were password protected, making it difficult to give precise numbers at the time.
In fact it was not just user accounts that were compromised. Source code for a number of Adobe applications -- including Acrobat, Reader and Photoshop -- was also obtained. As recently as this weekend, an unencrypted file seemingly containing data obtained from Adobe appeared on AnonNews.org; an encrypted version of the file had previously been made available but security firms were unable to crack the password.
A spokeswoman for Adobe, Heather Edell said that the investigation is ongoing and that the attackers gained access to "many invalid Adobe IDs, inactive Adobe IDs, Adobe IDs with invalid encrypted passwords and test account data". She went on to say: "Our investigation is still ongoing. We anticipate the full investigation will take some time to complete".
Have you been contacted by Adobe to let you know that yours is one of the affected accounts? Share your experiences in the comments.
Photo Credit: David Evison/Shutterstock
via BetaNews http://feeds.betanews.com/~r/bn/~3/_gSoecdP1s4/
Aucun commentaire:
Enregistrer un commentaire