Adobe Reaches Settlement with 15 States Over 2013 Breach
Ohio Attorney General Mike Dewine announced that Ohio and 14 other states have settled with Adobe Systems. The settlement ends an investigation of a 2013 data breach of Adobe servers that held the personal information of 2.9 million customers.
“We’re committed to protecting Ohio’s families, and this agreement will help safeguard consumers’ personal information,” Attorney General DeWine said. “This is one of many ways we help protect people from identity theft and similar threats.”
The breach was discovered in September 2013 when Adobe learned a hacker was attempting to decode encrypted customer payment card data. The company was able to stop the decryption but discovered that the attacker had compromised a Web server and used it to access other Adobe network servers.
According to complaints filed against Adobe, the hacker stole encrypted payment card numbers and expiration dates, names, addresses, telephone numbers, email addresses and Adobe usernames.
Other states involved in the agreement include Arkansas, Connecticut, Illinois, Indiana, Kentucky, Maryland, Massachusetts, Minnesota, Mississippi, Missouri, North Carolina, Oregon, Pennsylvania and Vermont.