Over 150 million breached records from Adobe hack have surfaced online

107

Things aren't getting much better for Adobe after the company endured a major security breach last month. If you believe the Sophos Naked Security blog, things may be far worse than originally thought. Adobe's initial estimate was that information on nearly 3 million user accounts was compromised during the intrusion. That number quickly ballooned up to 38 million. But according to Paul Ducklin at Naked Security, a database of Adobe user data has turned up online at a website frequented by cyber criminals. When all is said and done, Ducklin suggests Adobe's security blunder could rank among the worst in history. He says over 150 million "breached records" can be found in the database dump, which is a staggering 10GB when uncompressed. After analyzing a sample pool of records that were part of the leak, Sophos found that Adobe used some questionable encryption techniques.

For its part, Adobe is standing by its latest 38 million figure, and says that all impacted users have already been notified. The company was quick to reset passwords for everyone involved. Adobe says the perpetrators likely picked up "many invalid Adobe IDs, inactive Adobe IDs, Adobe IDs with invalid encrypted passwords, and test account data" in the breach, which may be playing a significant role in the huge total cited by Sophos. "We currently have no indication that there has been unauthorized activity on any Adobe ID account involved in the incident," a spokesperson tells The VergeLastPass has set up an online tool to quickly find out if your email address is listed in the massive database.

More from The Verge

Back to top ^
X
Log In Sign Up

forgot?
Log In Sign Up

Please choose a new Verge username and password

As part of the new Verge launch, prior users will need to choose a permanent username, along with a new password.

Your username will be used to login to Verge going forward.

I already have a Vox Media account!

Verify Vox Media account

Please login to your Vox Media account. This account will be linked to your previously existing Eater account.

Please choose a new Verge username and password

As part of the new Verge launch, prior MT authors will need to choose a new username and password.

Your username will be used to login to Verge going forward.

Forgot password?

We'll email you a reset link.

If you signed up using a 3rd party account like Facebook or Twitter, please login with it instead.

Forgot password?

Try another email?

Almost done,

By becoming a registered user, you are also agreeing to our Terms and confirming that you have read our Privacy Policy.
Spinner.vc97ec6e

Authenticating

Great!

Choose an available username to complete sign up.

In order to provide our users with a better overall experience, we ask for more information from Facebook when using it to login so that we can learn more about our audience and provide you with the best possible experience. We do not store specific user data and the sharing of it is not required to login with Facebook.

tracking_pixel_5345_tracker