- News & Events
October 7, 2013
When Adobe says it’s “changing the world through digital experiences,” chances are the security breach that exposed sensitive, personal information relating to customer orders and put millions at risk — 2.9 to 3 million depending on who’s counting — was not the kind of digital experiences the company had in mind.
Adobe spokesperson Brad Arkin, senior director of security for Adobe products and services, explained that the attack revealed both customer information and access to source codes for “numerous Adobe products.” According to cnet.com, those products included Adobe Acrobat, ColdFusion and ColdFusion Builder. Adobe points out that as far as source code goes, there’s no “increased risk to customers as a result of this incident.” Odd, they didn’t mention whether there might be an increased risk of pirated software. Aaaargh.
Arkin went on to say that investigators didn’t “believe the attackers removed decrypted credit or debit card numbers.”
While Adobe pointed out that federal law officials were on the case (hopefully they’re not the ones who’ve been furloughed because of the government shutdown), customers should take their own precautions.
Cnet.com reports Adobe is resetting passwords on breached customer IDs who’ll be receiving emails if they’ve been affected. The company is also notifying customers whose credit or debit card information has exposed.
Finally, Adobe has promised to offer customers the option of enrolling in a one-year complimentary credit monitoring membership — where available. Ummm, what exactly does “where available” mean?
ThreatMetrix™ secures Web transactions against account takeover, payment fraud, identity spoofing, malware, and data breaches. The ThreatMetrix™ Global Trust Intelligence Network, which analyzes 500 million monthly transactions, provides context-based authentication and Web fraud prevention to help companies accelerate revenue, reduce costs and eliminate friction. ThreatMetrix protects more than 1,900 customers and 9,000 websites across a variety of industries, including financial services, enterprise, e-commerce, payments, social networks, government, and insurance. For more information, visit www.threatmetrix.com or call 1-408-200-5755.
To join in the cybersecurity conversation, follow us on Twitter @ThreatMetrix.
Posted by Dan Rampe
Tags: Account Takeover, Account Takeover Fraud, Bank Fraud, Botnets, CNP fraud, Cookieless Device Identification, Cookies, Credit Card Fraud, Cyber attacks, Cyber Warfare, Data Breach, Device Detection, Device Fingerprint, Device Fingerprinting, Device ID, Device Identification, Fraud Prevention, Hacking, Identity Spoofing, Identity theft, Malware, Malware Protection, Man-in-the-Browser Detection, MitB, Mobile fraud, National Cyber Security Awareness Month, Online Fraud, Phishing, Phishing Detection, PII, ThreatMetrix, ThreatMetrix Cybercrime Index, ThreatMetrix Global Trust Intelligence Network, TrustDefender Cybercrime Protection Platform, Web Fraud