It would appear that anything connected to the internet isn’t safe anymore. Even mega companies such as Sun, Google, Apple, and Adobe are not immune to attacks from cyber space. With all of the money used in intrusion detection, firewalls, DMZ honeypot schemes, and full time information security teams you would assume that it should be near impossible for someone to hijack any information from these top tier companies. Unfortunately, Adobe is the latest to fall prey to the hack attack and has lost some very valuable information in the process.
As hackers ravaged the Adobe servers, they found their way to the repository of source code for a number of Adobe’s franchise products. According to reports filed by Adobe, the intrusion led to the attackers stealing programming code for Adobe Acrobat, Cold Fusion, and Cold Fusion Builder. The theft of the source coding doesn’t have Adobe worried about anyone trying to illegally sell or pirate the software but instead has others worried that prolonged picking at the innards of these program will lead to the discovery of security holes in them. With the advanced knowledge of where to attack these programs, owners of these on unsecured or weakly secured networks could be privy to new viruses, Trojans, and worms that could sneak in undetected through those very holes.
Also, the invasion claimed about 2.9 million Adobe customers private information. This information included user ID numbers, individual’s full names, any cards numbers that were on file, and encrypted passwords. Basically all of the information that would be used in the Adobe Store to purchase any of their products was now in the hands of these hackers. Supposedly outside contractors named Alex Holden and Brian Krebs had been searching for information from attacks at other companies and stumbled upon what they believed to be a huge chunk of Adobe’s source code on a server held by individuals who used the code and user information to profit over the internet.
Adobe had this to say when it filed its 10-Q report on Thursday, “We do not believe that the attacks will have a material adverse impact on our business or financial results. It is possible, nevertheless, that this incident could have various adverse effects.” Those mentioned adverse effects would lead others to believe that the above speculation on finding new security flaws and leaked customer information may be harmful to Adobe’s customers. In immediate response to the attack, Adobe stated it would reset passwords of customers who may have had their information compromised. They also warned those same customers to reset passwords use elsewhere if they had a common password which was used at the Adobe site.
So what does all of the above information mean for those of us directly affected by this cyber heist? Basically, Adobe is trying to do anything they can to track down whoever is responsible with the assistance of federal law offices as well as trying to secure customers financial well being by being in contact with several banks. This doesn’t mean that all is well and we do not have to do our part. I would suggest to immediately log into your Adobe account and change your password at least to something strong and not used on multiple sites. If that old password was used on any other sites you frequent such as banking or shopping networks, change those also to something else. Since most people use similar user names and passwords across multiple sites, stealing someones info can be very beneficial as the thief can access accounts on multiple websites.
By doing our part as well as Adobe vowing to take action, we can limit the damage that this leak actually causes. Knowledge is power and knowing that the security breach took place and taking initiative, collectively we can keep this attack from harming us and Adobe. Tired of hackers stealing IDs/CC numbers/apps? Vent about it with me in the comments section below!