15 States Reach Settlement with Adobe Over 2013 Data Breach

Under the settlement, Adobe agrees to implement new policies and practices to prevent similar breaches in the future and pay $1 million to the 15 states.

by Rich Gillette, Dayton Daily News, Ohio / November 10, 2016

(TNS) -- Ohio and 14 other states have settled with Adobe Sytems to resolve an investigation into the 2013 data breach of certain Adobe servers, which contained personal information of nearly 53,000 Ohio residents.

Under the settlement, Adobe agrees to implement new policies and practices to prevent similar breaches in the future and pay $1 million to the 15 states. The Ohio Attorney General’s share of the total payment is $74,772.

“We’re committed to protecting Ohio’s families, and this agreement will help safeguard consumers’ personal information,” Attorney General DeWine said. in a release. “This is one of many ways we help protect people from identity theft and similar threats.”

In September 2013, Adobe learned that an attacker was trying to decode encrypted customer payment card numbers maintained on one of its servers. Adobe stopped the decryption but found the attacker had compromised a Web server and used it to access other servers on Adobe’s network.

According to complaints, an attacker stole encrypted payment card numbers and expiration dates, as well as names, addresses, telephone numbers, e-mail addresses, and usernames from Adobe servers.

A copy of the agreement is available on the Ohio Attorney General’s website.

©2016 the Dayton Daily News (Dayton, Ohio) Distributed by Tribune Content Agency, LLC.