Nearly Three Million Adobe Customer Accounts Hacked; Source Code for Certain Apps Also Taken
If you've recently bought something with your Adobe account, then I have some bad news for you. A grand total of 2.9 million Adobe customer accounts have been compromised, with information like names, expiration dates, and credit/debit card numbers taken. Thankfully the credit/debit card numbers are all encrypted and Adobe doesn't think any decrypted ones were taken, but even so just keep an eye on your bank account. The company has reset all account passwords, so if yours was involved in the attack then you'll be receiving an email. Likewise, if your credit/debit card information was taken, you'll receive an email containing the steps to take in order to protect yourself. Customers whose credit/debit card numbers were taken will also have an option to enroll in a one-year credit monitoring membership free of charge. Banks have also been notified of the attack.
Some source code for select apps, like Acrobat and ColdFusion, was also taken, and Adobe believes the two attacks are related. If you use any of those programs, the company recommends using only the supported versions and applying all available security updates. You can also follow the advice in the Acrobat Enterprise Toolkit and ColdFusion Lockdown Guide to find out how to keep those programs secure. Fortunately Adobe doesn't believe there's any "increased risk" to customers of the selected apps.
When more information is available about these hacks, you can be sure to find out here. In the meantime, Adobe is working with federal investigators to find out who did this and punish them accordingly.