Our investigation currently indicates that the attackers accessed Adobe customer IDs and encrypted passwords on our systems. We also believe the attackers removed from our systems certain information relating to 2.9 million Adobe customers, including customer names, encrypted credit or debit card numbers, expiration dates, and other information relating to customer orders. At this time, we do not believe the attackers removed decrypted credit or debit card numbers from our systems. We deeply regret that this incident occurred. We’re working diligently internally, as well as with external partners and law enforcement, to address the incident.
This is an unfortunate reality with any aspect of our increasingly digital society. The even more potentially dangerous aspect of this breach is that the hackers stole source code for several Adobe programs. This could allow them to compromise users computers down the road as they unpack and exploit the loopholes within the software's code.
I would take exception with those ready to throw the towel at Adobe because this is how the subscription cloud operates. Unfortunately, this is a problem that reaches far beyond the licensing model that a company chooses to utilize in distributing their software. This is a problem faced by any company where transactions occur in digital space - Amazon, Apple, Microsoft, Sony, Kroger, Target, Sears, Tom Thumb, 7-Eleven, California Pizza Kitchen - basically any company in existence today. Tim Kolb on the Creative Cow forums sums up the problem quite well:
Customers getting on Adobe's case for letting their info get hacked is completely warranted, but implying this is part and parcel of subscription licensing vs perpetual licensing instead of just plain, old fashioned, embarrassing, corporate IT vulnerability that needs to be addressed, is really spinning it.