{"id":12112,"date":"2019-11-29T10:07:56","date_gmt":"2019-11-29T09:07:56","guid":{"rendered":"http:\/\/159.69.82.204\/win\/?p=12112"},"modified":"2019-11-29T10:09:03","modified_gmt":"2019-11-29T09:09:03","slug":"adobe-creative-cloud-7-5-million-account-records-leaked","status":"publish","type":"post","link":"https:\/\/borncity.com\/win\/2019\/11\/29\/adobe-creative-cloud-7-5-million-account-records-leaked\/","title":{"rendered":"Adobe Creative Cloud: 7.5 Million account records leaked"},"content":{"rendered":"<p><img loading=\"lazy\" decoding=\"async\" style=\"float: left; margin: 0px 10px 0px 0px; display: inline\" src=\"https:\/\/www.borncity.com\/blog\/wp-content\/uploads\/2015\/01\/Schutz.jpg\" width=\"40\" align=\"left\" height=\"47\">[<a href=\"https:\/\/www.borncity.com\/blog\/2019\/11\/29\/75-millionen-kontendaten-der-adobe-creative-cloud-geleakt\/\" target=\"_blank\" rel=\"noopener noreferrer\">German<\/a>]Adobe has to admit a data leak. 7.5 million Adobe Creative Cloud account details from an unprotected database were accessible to third parties via a web browser. <\/p>\n<p><!--more--><\/p>\n<p><img loading=\"lazy\" decoding=\"async\" alt=\"\" src=\"https:\/\/vg01.met.vgwort.de\/na\/fe39efc265cb485f81438b9e30f0be13\" width=\"1\" height=\"1\">Adobe Creative Cloud is a subscription service that gives users access to a number of popular Adobe products including Photoshop, Lightroom, Illustrator, InDesign, Premiere Pro, Audition, After Effects, and more. Adobe has replaced its perpetual license model with a one-time purchase in 2013 with the cloud subscription model. And now Adobe Creative Cloud users' account information was publicly available. <\/p>\n<blockquote class=\"twitter-tweet\">\n<p lang=\"en\" dir=\"ltr\">Some Friday vibes in here: <a href=\"https:\/\/t.co\/CiPo3xIZsy\">https:\/\/t.co\/CiPo3xIZsy<\/a><\/p>\n<p>\u2014 Bob Diachenko (@MayhemDayOne) <a href=\"https:\/\/twitter.com\/MayhemDayOne\/status\/1187831383336599553?ref_src=twsrc%5Etfw\">October 25, 2019<\/a><\/p><\/blockquote>\n<p><span id=\"preserveaeb6f07d77294219b905dd75a3ace642\" class=\"wlWriterPreserve\"><SCRIPT charset=\"utf-8\" src=\"https:\/\/platform.twitter.com\/widgets.js\" async><\/SCRIPT><\/span> <\/p>\n<p>The <a href=\"https:\/\/www.comparitech.com\/blog\/information-security\/7-million-adobe-creative-cloud-accounts-exposed-to-the-public\/\" target=\"_blank\" rel=\"noopener noreferrer\">database with the sensitive user information has been discovered<\/a> by the security researchers Bob Diachenko and Comparitech. I became aware of this case through Bob Diachenko's tweet above. Access to the Elasticsearch database was possible without password or other authentication.<\/p>\n<p><a href=\"https:\/\/cdn.comparitech.com\/wp-content\/uploads\/2019\/10\/edit-2.jpg\" target=\"_blank\" rel=\"noopener noreferrer\"><img loading=\"lazy\" decoding=\"async\" title=\"Adobe Creative Cloud-Daten\" alt=\"Adobe Creative Cloud-Daten\" src=\"https:\/\/cdn.comparitech.com\/wp-content\/uploads\/2019\/10\/edit-2.jpg\" width=\"639\" height=\"354\"><\/a><br \/>(Source: Comparitech)<\/p>\n<p>The database contained nearly 7.5 million user data from the Adobe Creative Cloud and could be accessed by virtually any user with a simple browser. The data included email addresses, account information, and the Adobe products used by each user.<\/p>\n<ul>\n<li>Email addresses\n<li>Account creation date\n<li>Which Adobe products they use\n<li>Subscription status\n<li>Whether the user is an Adobe employee\n<li>Member IDs\n<li>Country\n<li>Time since last login<\/li>\n<\/ul>\n<p>After discovering the exposed data, Diachenko immediately took steps to inform Adobe.<\/p>\n<ul>\n<li>October 19, 2019 &#8211; Security researcher Diachenko discovered the exposed data and informed Adobe immediately.\n<li>October 19, 2019 &#8211; Adobe has secured the instance with the database.<\/li>\n<\/ul>\n<p>Security researchers don't know exactly when the database will be publicly visible for the first time. But Diachenko estimates that it was exposed for about a week. It is unknown whether anyone else has obtained unauthorized access to the database in the meantime.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>[German]Adobe has to admit a data leak. 7.5 million Adobe Creative Cloud account details from an unprotected database were accessible to third parties via a web browser.<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[580],"tags":[69],"class_list":["post-12112","post","type-post","status-publish","format-standard","hentry","category-security","tag-security"],"_links":{"self":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/posts\/12112","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/comments?post=12112"}],"version-history":[{"count":0,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/posts\/12112\/revisions"}],"wp:attachment":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/media?parent=12112"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/categories?post=12112"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/tags?post=12112"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}