Under the settlement, Adobe agrees to implement new policies and practices to prevent similar breaches in the future and pay $1 million to the 15 states. The Ohio Attorney General’s share of the total payment is $74,772.
“We’re committed to protecting Ohio’s families, and this agreement will help safeguard consumers’ personal information,” Attorney General DeWine said. in a release. “This is one of many ways we help protect people from identity theft and similar threats.”
In September 2013, Adobe learned that an attacker was trying to decode encrypted customer payment card numbers maintained on one of its servers. Adobe stopped the decryption but found the attacker had compromised a Web server and used it to access other servers on Adobe’s network.
According to complaints, an attacker stole encrypted payment card numbers and expiration dates, as well as names, addresses, telephone numbers, e-mail addresses, and usernames from Adobe servers.
A copy of the agreement is available on the Ohio Attorney General’s website.
©2016 the Dayton Daily News (Dayton, Ohio) Distributed by Tribune Content Agency, LLC.