On Tue, Nov 26, 2013 at 8:28 AM, Bruce Sorge wrote: > Same here John. Emails stating that my password might have been > compromised as well.
I got a few emails to various addresses. Some arrived right after the breach and others much later (a month maybe). IIRC, none were about credit card data, only about UN/PW breach. Sounds like they were not using a tokenization service and were storing the PCI directly? Odd that they would be stored in the same location as the UN/PW (assuming they are both part of the same breach). Usually vendors with Payment Card volume as high as Adobe are required to keep PCI on totally isolated systems. But then, you'd assume that about the source code that was stolen as well. So the breach was 1) authentication information AND 2) Payment Card Information AND 3) source code? Presumably all available via the same breach? Each of which should have been isolated systems. Someone got pwned. Not Adobe's finest hour. -Cameron ... ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~| Order the Adobe Coldfusion Anthology now! http://www.amazon.com/Adobe-Coldfusion-Anthology/dp/1430272155/?tag=houseoffusion Archive: http://www.houseoffusion.com/groups/cf-talk/message.cfm/messageid:357144 Subscription: http://www.houseoffusion.com/groups/cf-talk/subscribe.cfm Unsubscribe: http://www.houseoffusion.com/groups/cf-talk/unsubscribe.cfm
