Adobe data breach

It is reported that an attacker known as Mr. Raccoon has compromised data belonging to Adobe. According to the claim, approximately 13 million support tickets were stolen, along with around 15,000 employee records and internal documents. At this time, the incident has not been officially confirmed by Adobe.

⚙️ Attack progression

The attacker reportedly gained access to Adobe's infrastructure through a third-party BPO provider responsible for customer support.

The attack began with a phishing email sent to an employee of the contractor. A RAT was then installed on the employee's device, allowing the attacker to access the working environment and later escalate privileges using a manager's credentials.

The key issue appears to lie within the support system itself. According to the attacker, it allowed the entire ticket database to be exported in a single request without proper restrictions or controls.

💬 Discuss