Slashdot Mirror

← Back to Stories (view on slashdot.org)

Adobe Hacked: Almost 3 Million Accounts Compromised

Posted by samzenpus on from the breaking-in dept.

sl4shd0rk writes "Adobe Systems Inc. is expected to announce today that hackers broke into its network and stole source code for an as-yet undetermined number of software titles, including its ColdFusion Web application platform, and possibly its Acrobat family of products. The company said hackers also accessed nearly three million customer credit card records, and stole login data for an undetermined number of Adobe user accounts."

3 of 256 comments (clear)

  1. Re:3 million? by the+eric+conspiracy · · Score: 5, Interesting

    ColdFusion is built on JRun which is the most miserable POS Java servlet container conceived by the mind of man.

    Since the source code is out maybe it will get some bug fixes.

  2. Adobe != security by oneiros27 · · Score: 5, Interesting

    Adobe must be the one company in the world to have a worse track record at security than Microsoft, Oracle or Mozilla.

    At my work, they require us to take annual security training ... and this year, I flat out refused to take it from any of my systems ... because I had to install flash & turn on java in my web browser. I had to go to the 'training center' to take it from one of the machines there.

    ... not a week later, the first of the 2013 Flash vulnerabilities was announced ... then a couple of weeks later, another one ... then the Java one ...

    Then I was told that I had to take the 'advanced security' training ... what was the recommendation? to turn off flash & java in your web browser.

    ah, the irony.

    --
    Build it, and they will come^Hplain.
  3. Re:See... this is why I torrent cracked versions. by rtb61 · · Score: 5, Interesting

    Especially when the break in was prior to the 17th of September and they didn't notify customer until another customer noticed Adobe source code floating around the internet October the 13th. It would seem if an outside company had not discovered the evidence of the breach Adobes customers would never have been warned that their log in details and credit card details had been stolen. Oh but the credit card details still maybe might secure because they were encrypted and those that could hack the system (likely ex-insiders and outsourcers) maybe might not have passwords for the encryption even though they had passwords for everything else.

    It seems like Adobe needs to be answering some very serious question in a court of law as to why that information was withheld from customers for so long.

    --
    Chaos - everything, everywhere, everywhen