Gold Sponsors
Array Telepresence Logo   Human Productivity Lab Logo   Ashton Bentley Logo
Silver Sponsors
Bronze Sponsors
Telepresence Options Magazine

Latest Telepresence and Visual Collaboration News:
Full Article:

Adobe Confirms Hacker Breach Of Connect Video Conferencing

November 15, 2012 | Telepresence Options
Adobe has confirmed that the personal data of 150,000 users has been compromised after a hacker breach


By Robert Lemos,

Adobe has reacted quickly after it admitted that its video conferencing service, Adobe Connect, has been compromised.

Adobe pulled down a forum for users of the Adobe Connect service, after a hacker successfully compromised the server and downloaded information on its 150,000 members.

Egyptian Hacker

The information taken from the server included each member's name, username, company, title and email address as well as the hashed version of their password. In a statement posted to Pastebin on 13 November, the hacker - who claimed to be Egyptian - said that he would publicly post only the information for Adobe employees and users that work for the US Department of Defense or other government agencies.

"I'm not looking to ruin Adobe business so i will leak only (those) emails," the post stated.

The compromise of Adobe's ConnectUsers Forum is the latest breach of a major corporate Web service in the past two years. Hackers stole the passwords for 6.5 million LinkedIn users in June and leaked the passwords of approximately 400,000 Yahoo! Voices users in July.

In a blog post on its Connect Blog, Adobe confirmed the compromise and briefly stated the steps it has taken to fix the issues, including pulling down the service on the evening of 13 November and resetting the password of the affected users. The company will send out instructions to users on resetting their password once it restores the service, Adobe said in a statement.

"It does not appear that any other Adobe services, including the Adobe Connect conferencing service itself, were impacted," Guillaume Privat, Director of Adobe's Connect product said in the post.

Adobe recommended that all users change their passwords and follow the practice of using a different password for every Web service.

Password reuse is a major cause for concern when Web services are compromised. An attacker that compromises a minor site with poor security can use a password file to gain access to people's accounts on sites and services with stronger security. Following the compromise of Yahoo Voices, for example, one security researcher found that 60 percent of the people who used both the Yahoo service and were also members of Sony Pictures, which was breached in 2011, used the same password.

It will likely not be long before a significant portion of the password list is decrypted. Brute-force decryption techniques have advanced to the point where attackers can quickly decrypt the most common passwords from their hashes. For example, 80 percent of the list of LinkedIn password were decrypted.

      Continue Reading...

Add New Comment

Telepresence Options welcomes your comments! You may comment using your name and email (which will not be displayed), or you may connect with your Twitter, Facebook, Google+, or DISQUS account.