« Disaster Recovery

Adobe Systems’ server code found online

Adobe Systems is known for many programs, but their servers are also subjected to a data breach.
Adobe Systems is known for many programs, but their servers are also subjected to a data breach.

Businesses have become more reliant on completing their operations over the internet because of electronic document management programs and credit card processing systems. However, data breaches can damage customer trust and expose them to possible identity theft.

Adobe Systems, the software company that created a multitude of programs like Adobe Acrobat Reader and Adobe Creative Suite 6, announced earlier this month that one of its servers was hacked. About 2.9 million accounts were removed and found on a source code on the invader's website, according to Holden Security.

Information like a user's account, password and credit card numbers were encrypted, but other private information was not. Sophos security researcher Chet Wisnieswki told Computerworld that other personal information has its own potential dangers.

"I'm not really on the hook for a stolen credit card," Wisnieswki said. "But I'm much more concerned about the personal data, about someone using that to get five more credit cards in my name."

Wisnieswki added that "encrypting only things that are required by the [payment card industry standards]" are not enough in an digital world.

Adobe's chief security officer Brian Arkin acknowledged the data breach, but assured customers that they "do not believe attackers removed decrypted credit or debit card numbers from our systems" on the company's blog. Since the attack, customers have been notified and subscribed to a one-year subscription to credit card monitoring services—costing Adobe about $300 million.

Similar to other e-commerce businesses, Adobe has to protect personal information in terms of its large customer base.

Business continuity consultants who specialize in disaster recovery efforts can help organizations shield their clients from future data breaches, protecting customer trust and the company's reputation.