It recently turned out that the security breach at Adobe a month ago was much bigger than first reported – it affected 38 million customers, not 3 million.



The tech giant has also claimed that cyber attackers had stolen part of the source code to Photoshop editing software. This app is known to be widely used by professional photographers. The company disclosed the breach in the beginning of October, admitting that the attackers took credit card data and other information from almost 3 million customers’ accounts. Adobe also admitted that the intruders accessed an undisclosed amount of Adobe IDs and encrypted passwords which were stored in a separate database. A few days ago the investigation found out that nearly 38 million records from that database were stolen. In addition, the attackers also took source code to 3 other products: Acrobat, ColdFusion and ColdFusion Builder.

The software maker thinks that the hackers also obtained access to invalid Adobe IDs, inactive Adobe IDs, Adobe IDs with invalid encrypted passwords and test account information as well. The tech giant continues investigation in order to determine how much invalid account data was compromised and is notifying affected users.

Despite the fact that the stolen passwords are claimed to be encrypted, the hackers may have been able to access data in plain text by breaking the algorithm utilized to scramble them. The attackers could likely use the obtained passwords to break into users’ accounts at other services.

Thus far, Adobe didn’t get any information about unauthorized activity on Adobe accounts, but the company could not say whether stolen credit cards or passwords had been used to start follow-on attacks against users or conduct other types of cybercrimes. The full investigation will take some time to complete.