Adobe security breach: now what?

Posted by Emory Kale
Well, the first thing you can do is change your Adobe ID and password. And there's more.
 
This week, 2.9 million Adobe customers found out that their accounts were compromised by a hack of Adobe software. We called it horrendous. Adobe said that it may have been because some of its users were running older versions of its web development and application server, Coldfusion. 
 
Welcome to the new world order were we all get robbed on a massive scale instead of the old days when the odds of someone breaking into your house were kinda rare. Or, maybe, just maybe, we need to stop trusting these monolithic companies that don't have the resources or abilities to manage the huge numbers of customers that the web brings them. Big ain't better.
 
Anyhow, here's what Adobe is recommending. Looks pretty boilerplate:
 
 
-If your Adobe ID and password were involved: Adobe has already reset your password. You will receive an email notification from Adobe with information on how to change your password. We are only notifying customers whose user ID and password were involved, and that process is already underway.
 
-Changing your password: If you have not yet received a notification but would like to change your password on any Adobe service, you may do so at any time. Instructions are available on this page.
 
-Passwords and IDs for specific Adobe services: Adobe ID is a separate system from the user ID and logins associated with EchoSign, Behance, TypeKit, Marketing Cloud, and Connect Pro. If you use the same password for your Adobe ID and any of these services, please change your passwords for these other services as well.
 
-Other websites: As a precaution, we also strongly recommend that you change your password on any website where you may have used the same user ID and password as your Adobe ID and password.
 
-Recognizing phishing attempts: To help protect yourself against non-legitimate email “phishing” attempts, please go directly to Adobe.com to change your password rather than clicking on any links you receive in email. How to recognize phishing attempts.
 
So, let's remember that Adobe is the company that took years to make Flash 64-bit, despite its abudant use and the pleadings of the masses. And, why the heck is a problem in source code tied to 2.9 million customer credit cards??