-
Adobe Security breach- 2.9 million user accounts affected.
See here for more-
edit- direct link to Adobe’s blog post.
https://blogs.adobe.com/conversations/2013/10/important-customer-security-announcement.html
-
33 Replies
-
-
Your account would still have been compromised if you had purchased a perpetual product from Adobe. But… I wonder if the subscription model encouraged these crooks.
– Oliver
Oliver Peters Post Production Services, LLC
Orlando, FL
http://www.oliverpeters.com -
Just a matter of time.
– Oliver
Oliver Peters Post Production Services, LLC
Orlando, FL
http://www.oliverpeters.com -
Not the first company to be hacked and won’t be the last. Nature of the beast in these connected times.
-
I guess I feel that in any system where you have to re-authorize the card every month, you’re put in a position where you have to have a current validatable card on constant file.
I know when I look at my Amazon Account, for example, I have maybe six cards going back in time, many of them expired or retired that will no longer authorize.
With the Apple purchase system, if I don’t buy anything on-line from them for a while, I often find that I have an outdated card linked and I need to fix that prior to a new purchase. Depends entirely on your purchase frequency. I’m sitting here using FCP-X 10.0.8 which I bought nearly two years ago and am still actively using, so at least there’s a chance if a black hat hacked them, the bad guy would only get an outdated card, provided I didn’t hook the account up to a persistent funds source like AmEx.
Modern credit card roulette?
Maybe next time I should think about starting to make my on-line software purchases using pre-paid grocery store cards as a form of identity theft insurance?
Know someone who teaches video editing in elementary school, high school or college? Tell them to check out http://www.StartEditingNow.com – video editing curriculum complete with licensed practice content.
-
[Bill Davis] “With the Apple purchase system, if I don’t buy anything on-line from them for a while, I often find that I have an outdated card linked and I need to fix that prior to a new purchase.”
It’s not like Apple has been immune from this.
https://money.cnn.com/2013/07/22/technology/apple-hacked/index.html
https://edition.cnn.com/2013/02/19/tech/web/apple-hacked/index.html
https://www.zdnet.com/apples-advanced-fingerprint-technology-is-hacked-should-you-worry-7000020998/
https://www.wired.com/gadgetlab/2012/08/apple-amazon-mat-honan-hacking/all/[Bill Davis] “I guess I feel that in any system where you have to re-authorize the card every month, you’re put in a position where you have to have a current validatable card on constant file. “
An interesting point is that the number of compromised Adobe accounts is greater than the total number of claimed CC subscribers. This would indicate it included customers who made boxed purchases in the past.
FWIW – BOA, Chase and others routinely have to re-issue Visa and MC cards. That’s because these cards have been compromised.
– Oliver
Oliver Peters Post Production Services, LLC
Orlando, FL
http://www.oliverpeters.com -
Got the notification and just changed my Adobe PW. That being said, not any different from when I had to change it for Evernote, Dropbox and a number of other companies who’s software I use or have purchased. Sign of the times. Not a reason at all to not use Adobe or any other software but a reminder that using only a single, easy password is like playing with fire. To that end; however, it would be nice if someone came up with a robust secure way for verification that did not involve passwords. Because of things like the Adobe and other company hacks, I don’t trust any of these companies that want to secure your passwords online. I’m forced to keep a spreadsheet that I encrypt using very heavy encryption. I keep all of my login and other important passwords that are required in this spreadsheet. I started this practice years ago and as a rule, I never remove anything from the spreadsheet, even if I don’t use the service or web page anymore. I just looked….. I’m up to 559 rows, where each row represents a unique password.
Good grief what a crazy society we have become.
-
[Phil Hoppes] “Not a reason at all to not use Adobe or any other software but a reminder that using only a single, easy password is like playing with fire.”
I disagree. This incident clarifies yet another reason why the subscription model is not a good thing. As Bill pointed out, having to have a constantly current card on file for reoccurring monthly charges exposes you to a much higher level of potential fraud. Bill might be right about using prepaid cards for things like this. Sounds like a good strategy.
On another note, Adobe called me the other day about why I haven’t gone to CC. He was practically begging me to join. I’ve never seen a company so desperate. They got an earful from me. I went from A-Z on why I won’t use CC. I could tell he’s heard this many times. He insisted that ALL companies would be going to a subscription model. I said “based on what evidence”? I contended that the whole industry was watching Adobe “go out on point”, and that I was convinced that anybody who might have been considering it, has wisely backed away from it.
Mitch Ives
Insight Productions Corp.“Criticism may not be agreeable, but it is necessary. It fulfills the same function as pain in the human body. It calls attention to an unhealthy state of things.” – Winston Churchill
-
[Mitch Ives] “having to have a constantly current card on file for reoccurring monthly charges”
I’m not so sure this is even true – especially if you purchase it annually.
– Oliver
Oliver Peters Post Production Services, LLC
Orlando, FL
http://www.oliverpeters.com -
[Mitch Ives] “and that I was convinced that anybody who might have been considering it, has wisely backed away from it.”
Doubtful. Many companies are adding subscription (or support service contract) models as an additional option, but not necessarily whole hog, like Adobe. Apple, Microsoft, Avid, Quantel and Autodesk have been doing this for a while at the enterprise level.
– Oliver
Oliver Peters Post Production Services, LLC
Orlando, FL
http://www.oliverpeters.com
Reply to this Discussion! Login or Sign Up