Hackers have made their way into Adobe servers and the net result was the theft of customer files for more than 2.9 million users.
Adobe also says the hackers made away with the source code for three of its most popular products.
The company announced the breach on Thursday. Officials call the breach “sophisticated” and say an unspecified number of customer IDs and encrypted passwords were stolen. The information theft includes customer names, credit and debit card numbers, and other information.
Hackers walked away with the source code for Acrobat, ColdFusion, and ColdFusion Builder.
The company’s security team believes the two attacks are related given their proximity in time to one another.
Following the massive Adobe security breach Chief Security Officer Brad Arkin issued the following statement:
“We deeply regret that this incident occurred. We’re working diligently internally, as well as with external partners and law enforcement, to address the incident. Based on our findings to date, we are not aware of any specific increased risk to customers as a result of this incident.”
Because Adobe actually took the time to encrypt customer data (a lot of companies have not lately), the risk of identity theft and financial fraud is fairly low.
The real loss in this case might be that of the intellectual property rights belonging to the company’s secretive source code.
The attack was discovered on September 17, 2013 but is believed to have occurred in mid-August, 2013.
Adobe has already notified customers if their debit or credit card numbers were in danger. The company also proactively began resetting customer account passwords and contacting those customers to notify them of the change.
More details to follow after the Adobe hack is fully investigated.