Adobe Systems, Inc announced on Thursday (October 3) that it has recently been victimized by a major security breach. Unfortunately, that hacking activity may have compromised credit card information, identification, and passwords of at least 2.9 million of its customers.
In his own blog post, Brad Arkin, the chief security officer of the software company disclosed that the attack came after they discovered several other recent attacks on the firm’s network. He said that based on their initial probe, the attackers were able to access its customer IDs as well as encrypted passwords within the system.
In a separate intrusion, source codes for various Adobe products were also stolen. Adobe believes that the two attacks could be related. The company has expressed its regret over this occurrence and assured its customers that it has started working with law enforcement agencies, external partners, and internal experts to address this incident and make sure it would never happen again in the future.
As a necessary measure, Adobe has already reported the incident to federal legislation enforcement authorities and to payment processing as well as banking partners. To address the problem, it would soon reset customer passwords. It would send email notifications to inform and instruct its customers to modify their Adobe passwords.
The affected customers are advised to modify their passwords. Adobe thinks that those customers who use a single password for all other accounts and sites should opt to change their current login details. This is to make sure hackers would not get to use their personal information to bad and inappropriate use.
To make up for the inconvenience, Adobe is offering affected customers an option to possibly obtain a year-long complimentary membership to credit monitoring agencies. All costs would be shouldered by the company.
Adobe intentionally withheld information about its specific products that were compromised in various instance. To date, Adobe is still looking at illegal access to various source codes of different Adobe products. It wants to make sure hackers would stop hacking Adobe.
In another report, Brian Krebs, an independent security reporter said he got more information about the incident. According to him, Adobe had already discovered the breach as early as September 17. Krebs also thinks the attack was mounted as early as mid-August but the company talked about it just by today.