Adobe Connect conferencing service hacked by Egyptian Hacker and leaked private data

A hacker named ViruS_HimA gained full access and dumped the entire database of more than 150,000 emails and hashed passwords of Adobe employees and customers/partners of the firm such as U.S. Military, USAF, Google, Nasa DHL and many other companies. The hacker was able to upload the php shell on the Adobe website and obtain database credentials.

Takeaway: In this instance, the hacker specifically addressed the latency in the response to a vulnerability of the company—the patch management is too long. The time from signal of a vulnerability to its fix may take many months. This directly implies a lack of agility that is common in most large organizations’ security teams, leading to a bogged-down system due to company size. It is almost always advantageous for these companies to rely on an MSSP for their security needs.