Illegal Access to Adobe Source Code

http://blogs.adobe.com/asset/2013/10/illegal-access-to-adobe-source-code.html

 

Also from Brian Krebs:
http://krebsonsecurity.com/2013/10/adobe-to-announce-source-code-customer-data-breach/

ARS:
http://arstechnica.com/security/201...stomer-data-stolen-in-sustained-network-hack/

 

https://www.wilderssecurity.com/showpost.php?p=2287366&postcount=57

 

The first link from your post is broken as it was taken from a Twitter feed.

 

Avira - TechBlog:
http://techblog.avira.com/2013/10/0...rce-code-and-millions-of-user-credentials/en/

 

Do you still use Flash after the attack on Adobe?

After Adobe announced a Cyber Attack I re-installed the system and didn't install flash since. I know they didn't say anything about FlashPlayer, but who knows what may come since the attackers probably got the Source Code.

Discuss.

---------------------------------------------------------------------

Souces

http://blogs.adobe.com/conversations/2013/10/important-customer-security-announcement.html

http://blogs.adobe.com/asset/2013/10/illegal-access-to-adobe-source-code.html

http://news.cnet.com/8301-1009_3-57605962-83/adobe-hacked-3-million-accounts-compromised/

http://www.pcmag.com/article2/0,2817,2425215,00.asp

http://rt.com/usa/adobe-hacked-krebs-hold-742/

http://www.cnbc.com/id/101085685

 

Re: Do you still use Flash after the attack on Adobe?

This is bad. Real bad. 40GB of source code stolen is not good for anyone.

 

Re: Do you still use Flash after the attack on Adobe?

This is the future..., and we will see much more of coordinated cyber attacks to major companies. The little man behind the pc screen is not necessary the first target for cyber criminals anymore .

 

Re: Do you still use Flash after the attack on Adobe?

Look for the Shumway (HTML5 Flash replacement) thread in the Other software & services subforum here at Wilders - i.e. it is now in the Firefox nightly release.

-- Tom

 

Re: Do you still use Flash after the attack on Adobe?

The theft of the credit card data and personal info is definitely bad. The theft of a corporations "intellectual property", maybe. As far as stolen source code being a security risk for the users, there's no reason it should be. Open Source software makes their code viewable by anyone, and it's more secure for it. If viewing that code makes Adobe's software vulnerable, then there's something seriously wrong with it, like known vulnerabilities being ignored, or something to hide like a backdoor. If the code is good and has been properly audited, there should be no security repercussions.

 

Re: Do you still use Flash after the attack on Adobe?

Of course there is something wrong with it. Flash and Acrobat are 2 of the biggest holes in any machine at this point.

 

Re: Do you still use Flash after the attack on Adobe?

I only use Flash on Virtual Machines now. I did a zero-fill on my drive so that no left-overs from flash would be here

 

Adobe's source code was parked on hackers' unprotected server

http://www.networkworld.com/news/2013/101113-adobe39s-source-code-was-parked-274762.html?hpg1=bn

 

Onwards to Gnash!

 

http://krebsonsecurity.com/2013/10/adobe-breach-impacted-at-least-38-million-users/

 

Thanks for this, Dermot. A day never goes by without a breach or compromise.

Spotted elsewhere thus replicating your post reply but worth a read for those interested.

http://www.networkworld.com/news/2013/102913-stolen-adobe-account-data-goes-275380.html • http://www.cso.com.au/article/53038...a_goes_public_photoshop_source_code_breached/

 

Can someone be targeted using the Adobe Breach?
http://7habitsofhighlyeffectivehackers.blogspot.com/2013/11/can-someone-be-targeted-using-adobe.html

An example showing why/where descriptive password hints are unwise.

 

Encryptic.

-- Tom

 

Anatomy of a password disaster - Adobe's giant-sized cryptographic blunder
http://nakedsecurity.sophos.com/201...ter-adobes-giant-sized-cryptographic-blunder/

Adobe breach reveals really terrible passwords are still popular – 2 million used “123456″
http://www.welivesecurity.com/2013/...ords-are-still-popular-2-million-used-123456/

 

(Reuters) -

http://www.reuters.com/article/2013/11/07/us-adobe-cyberattack-idUSBRE9A61D220131107

http://blog.lastpass.com/2013/11/take-action-now-check-if-youre-affected.html

 

Adobe got pwned and hardcore pwnage at that. It's sad to see, but they should of done better.

 

Anatomy of a password disaster - Adobe's giant-sized cryptographic blunder.

-- Tom

 

Re: Do you still use Flash after the attack on Adobe?

Criminal enterprises will go after who/what is most profitable to them.

 

(Reuters) -

http://www.reuters.com/article/2013/11/25/us-adobe-cyberattack-idUSBRE9AO10R20131125