2.9 million Adobe customer accounts have been compromised – including UK, US, Europe and worldwide.
Adobe servers have been hacked in what the company has described in a blogpost as 'sophisticated attacks on our network, involving the illegal access of customer information as well as source code for numerous Adobe products.'
The hackers managed to download details from 2.9 million accounts, including encrypted debit and credit card details – though Adobe says that 'at this time, we do not believe the attackers removed decrypted credit or debit card numbers from our systems'. The accounts include those who have an Adobe ID, not just Creative Cloud customers
We've reached out to Adobe to confirm that this affects users in the UK, though from comments such as this on Twitter it appears that this is the case. We've also seen tweets from people who've received the email in Denmark, Sweden and Finland.
Adobe advises that 'if your user ID and password were involved, you will receive an email notification from us with information on how to change your password. We also recommend that you change your passwords on any website where you may have used the same user ID and password.'
Creative Cloud cracked?
The hackers also downloaded source code for many of Adobe's applications. In its blogpost, the company says that it's checking to see if the code could be used to find vulnerabilities that could be exploited by malware, but another concern is that hackers could use the source code to create cracked versions of tools such as Photoshop CC (though these already exist). Limiting piracy was one of the reasons given for Adobe's move to a rental system with Creative Cloud.