The database was open for approximately one week before the problem was discovered.
An unprotected Elasticsearch database left the account details of 7.5 million Adobe Creative Cloud customers exposed to anyone with a Web browser. The open database, since closed, could have provided information such as names, email addresses, and Creative Cloud applications used to any curious individual.
Comparitech, with security researcher Bob Diachenko, discovered the database on Oct. 19. Diachenko, who estimated the database had been open for approximately one week, notified Adobe that same day, which is also when the company secured the database.
While no payment information was compromised, the information in the database could be used for phishing attacks against customers.
Read more here.
This free, all-day online conference offers a look at the latest tools, strategies, and best practices for protecting your organization’s most sensitive data. Click for more information and, to register, here.
About the Author(s)
You May Also Like
Guarding the Cloud: Top 5 Cloud Security Hacks and How You Can Avoid Them
April 4, 2024Cybersecurity Strategies for Small and Med Sized Businesses
April 11, 2024Defending Against Today's Threat Landscape with MDR
April 18, 2024Securing Code in the Age of AI
April 24, 2024
Black Hat USA - August 3-8 - Learn More
August 3, 2024Cybersecurity's Hottest New Technologies: What You Need To Know
March 21, 2024Black Hat Asia - April 16-19 - Learn More
April 16, 2024