A sophisticated attack on the Adobe network and across numerous Adobe products like Acrobat has affected at least 2.9 million customers. Adobe’s investigation points to two related attacks in which the attackers gained illegal access to source code for at least three of its products and stole customer information such as names and encrypted credit or debit card numbers, expiration dates and data related to customer orders.
Adobe’s Chief Security Officer, Brad Arkin, recommends “customers run only supported versions of the software, apply all available security updates, and follow the advice in the Acrobat Enterprise Toolkit and the ColdFusion Lockdown Guide. These steps are intended to help mitigate attacks targeting older, unpatched, or improperly configured deployments of Adobe products.”
Brian Krebs, of KrebsOnSecurity.com, reports, “Adobe said the credit card numbers were encrypted and that the company does not believe decrypted credit card numbers left its network.” Let’s hope so. In the meantime, the company has begun notifying affected customers and is planning to release security updates on Tuesday, October 8, 2013 for Adobe Reader and Acrobat XI (11.0.04) for Windows.
A customer security alert on Adobe.com asks customers to reset their passwords and assures, “We are working diligently internally, as well as with external partners and law enforcement, to address the incident.”
A new tool, released by security researchers at the University of Illinois, will walk through your Gmail account to see how much it would be worth to hackers.
With the all-digital currency bitcoin rising in value, hackers have redoubled their efforts to get at the money. Earlier this week, they hacked into a bitcoin bank. Today, Kaspersky Security reports that a malware scheme on Skype is taking over users’ machines to help them hunt for the currency online.
A war between a loosely organized anti-spam group called Spamhaus and one of the Web hosts the group publicly identified as a spammer escalated last week, at times threatening some of the basic infrastructure of the Internet, according to a security firm’s account.
For the third consecutive Friday afternoon, a major tech company has revealed that it was hacked. Today, it was Microsoft’s turn.
Apple Hit By Hackers Who Struck Facebook (The Wall Street Journal)
Apple said Tuesday that some of its employees’ Mac computers were attacked by hackers, a rare admission for a company that has long touted its security over PCs running Windows software. The malicious code in the latest attack is believed to have been the same discovered by Facebook, which said on Friday that its employees’ computers were breached by hackers last month.
GitHub, a site for sharing open-source software, was hit with a denial-of-service attack Thursday afternoon that seriously impaired its performance for more than half an hour, according to the website.
Click here to receive this Morning Social Media Newsfeed via email.
Exactly one week after the Sesame Street YouTube channel was hacked, with children’s videos replaced with porn, another major brand has fallen victim to YouTube hackers—Microsoft.
Yesterday afternoon the Sesame Street YouTube channel was taken offline following a lewd hacker attack in which many of the channel’s videos were taken down and replaced with pornographic video clips.