Reading:
“Adobe’s $1 million fine” – Adobe Systems has been fined for the security breach in 2013
Share:

Data Leak Lawyers - Begin Your Data Breach Claim Today!

Sign-up to a data breach claim today - use our quick and easy form to begin your claim for thousands of pounds in compensation.

Start Your Claim
Your privacy is extremely important to us. Information on how we handle your data is in our Privacy Policy

solicitors regulation authority

“Adobe’s $1 million fine” – Adobe Systems has been fined for the security breach in 2013

Adobe Systems has now been fined $1 million for the data breach that occurred in 2013.

Initially, it was believed that 38 million accounts were breached, but the total was then decreased to around half a million.

That’s still a heck of a lot of breaches though!

Nature of the breach

The software maker believed that usernames and encrypted passwords were stolen from its active users. The hack gave unauthorised access to usernames, passwords, addresses, telephone numbers, email addresses, payment card information, and expiration dates of active as well as inactive users.

Adobe’s (in)action

This raised alarm bells in my head – why did Adobe not erase the inactive accounts? This could’ve minimised the number drastically. It was argued that Adobe didn’t do enough to prevent the hack of thousands of companies because their security system was lax.

Their failure to have adequate security systems and procedures in place in the event of a breach has landed the software maker with a whopping $1 million fine. It’s alleged that Adobe didn’t have reasonable security measures in place to protect its systems from a cyber-attack, and didn’t have proper procedures in place to immediately detect an attack.

Laws and regulations

Under some American laws, companies and government agencies are required to give customers notification if their personal financial information may have been compromised by a security breach. Reporting is seen as good practice, and since the law was enforced in 2005, there has apparently been 3,700 reports of security breaches.

U.K. companies don’t always have the legal burden to report security breaches, but it’s deemed good practice if you do so. This will no doubt earn brownie points with customers and data protection regulators, if you’re seen to be reporting a breach. I’m sure customers appreciate honesty and transparency when they’re dealing with a company.

This may all change in 2018 when the EU General Data Protection Regulation comes into force, and companies may have to disclose their security breaches.

Warning bells

This should send out warning bells to companies and organisation who don’t have adequate cyber-security protection. It might be a relief for some companies to hear that the Information Commissioner’s Office’s (ICO) fine is capped at £500,000 in the U.K. – however this will all change when the EU General Data Protection Regulation comes into force in 2018. Fines and penalties should be the least of a company’s worries; instead, they should focus on the security of their customers’ personal data.

Sources:

http://www.ncdoj.com/News-and-Alerts/News-Releases-and-Advisories/Press-Releases/Adobe-to-pay-$1-million-for-data-breach,-bolster-s.aspx

http://www.theinquirer.net/inquirer/news/2477489/adobe-to-pay-usd1m-over-2013-security-data-breach

The content of this post/page was considered accurate at the time of the original posting and/or at the time of any posted revision. The content of this page may, therefore, be out of date. The information contained within this page does not constitute legal advice. Any reliance you place on the information contained within this page is done so at your own risk.

We offer genuine No Win, No Fee agreements for our clients. Why we do this is simple:

Leading Data Breach Lawyers
Our experience speaks for itself.
We will fight for your right to compensation.
Access to Justice
As a victim of a data breach or hack, you deserve your chance to get access to justice.
Risks Assessment
We carefully risk assess your case and take it on if we think we have a good chance of winning the claim.

Request A Callback From Our Team

Fill out our quick call back form below and we'll contact you when you're ready to talk to us.

Your privacy is extremely important to us. Information on how we handle your data is in our Privacy Policy
SRA
Contact
www.dataleaklawyers.co.uk is © of Your Lawyers Limited - we are 'Authorised and Regulated by the Solicitors Regulation Authority (SRA number 508768)'
arrow-up icon