Adobe has revealed that a series of attacks on its servers has compromised the security data of 2.9 million of its customers. Information taken includes names, encrypted credit or debit card information, expiration dates and other information.
In a post on the company blog, Adobe Chief Security Officer Brad Arkin states: “At this time, we do not believe the attackers removed decrypted credit or debit card numbers from our systems. We deeply regret that this incident occurred. We’re working diligently internally, as well as with external partners and law enforcement, to address the incident.”
As part of the security measures after the breach, Adobe says it will be resetting relevant customer passwords, notifying customers whose payment information have become compromised, notifying banks and financial institutions of those users as well as contacting federal law enforcement to help with the investigation.
Customers whose credit or debit card information was involved will be offered a one-year complimentary credit monitoring membership where available.
As well as its customer information, the hackers also accessed source code for numerous Adobe products. In all, according to third party security firm Hold Security LLC investigating the intrusion, 40 gigabytes of data were taken. According to the firm, the hackers involved also previously penetrated LexisNexis, Kroll, NW3C, and many other sites.
Adobe launched Creative Cloud in April 2012 and today is the only method to access the latest version of its Creative Suite products after the company eliminated the perpetual license model earlier this year.
More information for Adobe customers can be accessed here.