Just recently, Adobe Systems Inc. had suffered a major internal attack and the source code that Adobe uses for its programs. One of them of course is the Adobe Acrobat Reader. The hackers infiltrated Adobe and were all able steal and delete Adobe customer ID’s and encrypted passwords from the database. The information that the hackers have accessed all contain the customer name, encrypted card numbers, and other personal information about the customer that Adobe has stored in their database.
With the hackers having the code, they could potentially use it to find vulnerabilities in the software and manipulate the software to hack the machines of the users. They could collect the personal data of the users and use them to steal from them or sell the data that they have mined to the black market. This attack has been considered as one of the worst cyber-attacks since the attack on Microsoft in 2004.
“This is big news. If their source code is compromised, everyone is affected,” said Alex Holden of Hold Security.
In the report of Hold Security, it seems that the breach happened around August this year. And there is a possibility that they have been trying to infiltrate Adobe even earlier. Hold security immediately informed Adobe Systems about the breach when they found the source code for Adobe programs lingering on the server of known hackers who were also responsible for the attacks on LexisNexis, Kroll, NW3C, and many other sites.
“Over 40 Gigabytes in encrypted archives have been discovered on a hackers’ server that appear to contain source code of such products as Adobe Acrobat Reader, Adobe Acrobat Publisher, and the Adobe ColdFusion line of products,” Hold Security says in a statement.
Adobe and the US Federal authorities are already investigating the breach, believing that the hackers are also inside America. The company says that they are working round-the-clock to eliminate any potential threats to their valued customers including resetting passwords and informing customers whose credit or debit card details may have been stolen.
Adobe is a company that’s also one of the prime targets that hackers try to infiltrate because almost any device has an Adobe program installed on it including desktops, laptops, and mobile devices. According to the statement Eric Chiu, from cloud security company HyTrust, “Companies have to assume the “bad guy” is already inside the system, and by restricting what data each employee can access limits the damage a criminal can do.” “We’re seeing breaches happening more often these days and breaches are getting bigger in terms of magnitude of what’s being stolen,” he adds.