Adobe: Difference between revisions

Line 13:

===Lack of ownership===

In 2013, Adobe switched from a perpetual license model to a subscription model (Creative Cloud).<ref name=":0">{{Cite web |last=Cunningham |first=Andrew |date=2013-05-06 |title=Adobe’s Creative Suite is dead, long live the Creative Cloud |url=https://arstechnica.com/information-technology/2013/05/adobes-creative-suite-is-dead-long-live-the-creative-cloud/ |url-status=live |access-date=2025-09-30 |website=Ars Technica}}</ref><ref name=":1">{{Cite web |last=Campbell-Dollaghan |first=Kelsey |date=2013-05-06 |title=Say Goodbye to Creative Suite: Adobe CS Is Now Creative Cloud |url=https://gizmodo.com/say-goodbye-to-creative-suite-adobe-rebrands-cs-as-cre-493155052 |access-date=2025-05-06 |website=Gizmodo}}</ref><ref name=":2">{{Cite web |date=2013-05-06 |title=Adobe heralds subscription-only future for Photoshop and Creative Suite |url=http://www.dpreview.com/news/2013/05/06/Adobe-kills-perpetual-licenses-as-creative-suite-moves-to-creative-cloud-cc |archive-url=https://web.archive.org/web/20130622072403/http://www.dpreview.com/news/2013/05/06/Adobe-kills-perpetual-licenses-as-creative-suite-moves-to-creative-cloud-cc |archive-date=2013-06-22 |access-date=2025-09-30 |website=Digital Photography Review}}</ref>

In 2013, Adobe switched from a perpetual license model to a subscription model (Creative Cloud).<ref name=":0">{{Cite web |last=Cunningham |first=Andrew |date=2013-05-06 |title=Adobe’s Creative Suite is dead, long live the Creative Cloud |url=https://arstechnica.com/information-technology/2013/05/adobes-creative-suite-is-dead-long-live-the-creative-cloud/ |url-status=live |archive-url=https://archive.ph/cxcNR |archive-date=2026-01-04 |access-date=2025-09-30 |website=Ars Technica}}</ref><ref name=":1">{{Cite web |last=Campbell-Dollaghan |first=Kelsey |date=2013-05-06 |title=Say Goodbye to Creative Suite: Adobe CS Is Now Creative Cloud |url=https://gizmodo.com/say-goodbye-to-creative-suite-adobe-rebrands-cs-as-cre-493155052 |url-status=live |archive-url=https://archive.ph/0LcBS |archive-date=2026-01-04 |access-date=2025-05-06 |website=Gizmodo}}</ref><ref name=":2">{{Cite web |date=2013-05-06 |title=Adobe heralds subscription-only future for Photoshop and Creative Suite |url=http://www.dpreview.com/news/2013/05/06/Adobe-kills-perpetual-licenses-as-creative-suite-moves-to-creative-cloud-cc |url-status=live |archive-url=https://web.archive.org/web/20130622072403/http://www.dpreview.com/news/2013/05/06/Adobe-kills-perpetual-licenses-as-creative-suite-moves-to-creative-cloud-cc |archive-date=2013-06-22 |access-date=2025-09-30 |website=Digital Photography Review}}</ref>

===Proprietary file formats===

Works created in Adobe software come in Adobe-exclusive file formats such as .psd for Photoshop<ref>{{Cite web |last=Smith |first=Colin |date= |title=Most commonly used file types in Photoshop |url=https://photoshopcafe.com/commonly-used-file-types-photoshop/ |access-date=2025-09-30 |website=Photoshop CAFE}}</ref><ref>{{Cite web |last=Williams |first=Brendan |date=2023-10-12 |title=File Formats In Photoshop Explained (Complete List) |url=https://www.bwillcreative.com/file-formats-in-photoshop-explained/ |access-date=2025-09-30 |website=Brendan Williams Creative}}</ref> and .indd for InDesign.<ref>{{Cite web |title=Which File Format?: A Guide to INDD, IDML, INX and Everything In-Between |url=https://indesignskills.com/tutorials/open-indesign-files-in-earlier-versions/ |access-date=2025-09-30 |website=InDesign Skills}}</ref>

Works created in Adobe software come in Adobe-exclusive file formats such as .psd for Photoshop<ref>{{Cite web |last=Smith |first=Colin |date= |title=Most commonly used file types in Photoshop |url=https://photoshopcafe.com/commonly-used-file-types-photoshop/ |url-status=live |archive-url=https://archive.ph/0ZT6H |archive-date=2026-01-04 |access-date=2025-09-30 |website=Photoshop CAFE}}</ref><ref>{{Cite web |last=Williams |first=Brendan |date=2023-10-12 |title=File Formats In Photoshop Explained (Complete List) |url=https://www.bwillcreative.com/file-formats-in-photoshop-explained/ |url-status=live |archive-url=https://archive.ph/mTNlg |archive-date=2026-01-04 |access-date=2025-09-30 |website=Brendan Williams Creative}}</ref> and .indd for InDesign.<ref>{{Cite web |title=Which File Format?: A Guide to INDD, IDML, INX and Everything In-Between |url=https://indesignskills.com/tutorials/open-indesign-files-in-earlier-versions/ |url-status=live |archive-url=https://archive.ph/SumKq |archive-date=2026-01-04 |access-date=2025-09-30 |website=InDesign Skills}}</ref>

===Data breaches===

In 2013, Adobe disclosed a data breach affecting approximately 3 million customers. This number was later revised to approximately 38 million. <ref>{{Cite web |last=Finkle |first=Jim |date=29 Oct 2013 |title=Adobe data breach more extensive than previously disclosed |url=https://www.reuters.com/article/technology/adobe-data-breach-more-extensive-than-previously-disclosed-idUSBRE99S1DJ |website=reuters.com/}}</ref> This incident resulted in a $1,000,000 settlement and a commitment to implementing new security policies. <ref>{{Cite web |date=15 Nov 2016 |title=Adobe to Pay $1 Million, Update Security Policies to Resolve Multistate Investigation Into Data Breach |url=https://www.mass.gov/news/adobe-to-pay-1-million-update-security-policies-to-resolve-multistate-investigation-into-data-breach |website=mass.gov}}</ref> In 2019, researchers discovered that Adobe's Elasticsearch database was insecure, potentially exposing the information of approximately 7.5 million users. <ref>{{Cite web |last=Khandelwal |first=Swati |date=26 Oct 2019 |title=Unsecured Adobe Server Exposes Data for 7.5 Million Creative Cloud Users |url=https://thehackernews.com/2019/10/adobe-database-leaked.html?utm_source=chatgpt.com}}</ref> Breaches impacting U.S. federal agencies and Adobe Commerce/Magento stores also occurred in 2023 and 2024, respectively. <ref>{{Cite web |date=5 Dec 2023 |title=Threat Actors Exploit Adobe ColdFusion CVE-2023-26360 for Initial Access to Government Servers |url=https://www.cisa.gov/news-events/cybersecurity-advisories/aa23-339a |website=cisa.gov}}</ref><ref>{{Cite web |last=Sansec Forensics Team |date=1 Oct 2024 |title=Thousands of Adobe Commerce stores hacked in competing CosmicSting campaigns |url=https://sansec.io/research/cosmicsting-fallout |website=sansec.io}}</ref>

In 2013, Adobe disclosed a data breach affecting approximately 3 million customers. This number was later revised to approximately 38 million. <ref>{{Cite web |last=Finkle |first=Jim |date=29 Oct 2013 |title=Adobe data breach more extensive than previously disclosed |url=https://www.reuters.com/article/technology/adobe-data-breach-more-extensive-than-previously-disclosed-idUSBRE99S1DJ |website=reuters.com/}}</ref> This incident resulted in a $1,000,000 settlement and a commitment to implementing new security policies. <ref>{{Cite web |date=15 Nov 2016 |title=Adobe to Pay $1 Million, Update Security Policies to Resolve Multistate Investigation Into Data Breach |url=https://www.mass.gov/news/adobe-to-pay-1-million-update-security-policies-to-resolve-multistate-investigation-into-data-breach |url-status=live |archive-url=https://archive.ph/nSVpL |archive-date=2026-01-04 |website=mass.gov}}</ref> In 2019, researchers discovered that Adobe's Elasticsearch database was insecure, potentially exposing the information of approximately 7.5 million users. <ref>{{Cite web |last=Khandelwal |first=Swati |date=26 Oct 2019 |title=Unsecured Adobe Server Exposes Data for 7.5 Million Creative Cloud Users |url=https://thehackernews.com/2019/10/adobe-database-leaked.html?utm_source=chatgpt.com |url-status=live |archive-url=https://archive.ph/UfO7n |archive-date=2026-01-04}}</ref> Breaches impacting U.S. federal agencies and Adobe Commerce/Magento stores also occurred in 2023 and 2024, respectively. <ref>{{Cite web |date=5 Dec 2023 |title=Threat Actors Exploit Adobe ColdFusion CVE-2023-26360 for Initial Access to Government Servers |url=https://www.cisa.gov/news-events/cybersecurity-advisories/aa23-339a |url-status=live |archive-url=https://archive.ph/8g4C3 |archive-date=2026-01-04 |website=cisa.gov}}</ref><ref>{{Cite web |last=Sansec Forensics Team |date=1 Oct 2024 |title=Thousands of Adobe Commerce stores hacked in competing CosmicSting campaigns |url=https://sansec.io/research/cosmicsting-fallout |url-status=live |archive-url=https://archive.ph/vj2if |archive-date=2026-01-04 |website=sansec.io}}</ref>

==Incidents==

Line 43:

===User documents forced into the cloud with no opt-out===

Some of Adobe's iPad applications, including, but not limited to, the digital painting application Adobe Fresco<ref>{{Cite web |author=PaulaArtist2 |date=2021-12-13 |title=[How To] Save work locally / work offline |url=https://community.adobe.com/t5/fresco-discussions/how-to-save-work-locally-work-offline/m-p/12390252 |access-date=2025-09-22 |website=Adobe Community}}</ref> and the document scanning application Adobe Scan<ref>{{Cite web |last=Tagra |first=Ria |date=2021-06-14 |title=Does Adobe Scan offer a way to not utilize the Adobe Cloud |url=https://community.adobe.com/t5/adobe-scan-discussions/does-adobe-scan-offer-a-way-to-not-utilize-the-adobe-cloud/m-p/12104402 |access-date=2025-09-22 |website=Adobe Community}}</ref>, require an account to access and do not offer any option to opt out of syncing all documents created in these applications with Adobe's cloud servers. Similarly, the new non-Classic versions of Lightroom are fundamentally built around uploading all images to Adobe's cloud.

Some of Adobe's iPad applications, including, but not limited to, the digital painting application Adobe Fresco<ref>{{Cite web |author=PaulaArtist2 |date=2021-12-13 |title=[How To] Save work locally / work offline |url=https://community.adobe.com/t5/fresco-discussions/how-to-save-work-locally-work-offline/m-p/12390252 |url-status=live |archive-url=https://archive.ph/WreAh |archive-date=2026-01-04 |access-date=2025-09-22 |website=Adobe Community}}</ref> and the document scanning application Adobe Scan<ref>{{Cite web |last=Tagra |first=Ria |date=2021-06-14 |title=Does Adobe Scan offer a way to not utilize the Adobe Cloud |url=https://community.adobe.com/t5/adobe-scan-discussions/does-adobe-scan-offer-a-way-to-not-utilize-the-adobe-cloud/m-p/12104402 |url-status=live |archive-url=https://archive.ph/cO5G1 |archive-date=2026-01-04 |access-date=2025-09-22 |website=Adobe Community}}</ref>, require an account to access and do not offer any option to opt out of syncing all documents created in these applications with Adobe's cloud servers. Similarly, the new non-Classic versions of Lightroom are fundamentally built around uploading all images to Adobe's cloud.

There is no end-to-end encryption, i.e., Adobe has full access to all of these files. Disabling internet access allows the user to work offline, but any files created in the affected apps will immediately sync to the cloud in the background as soon as the device is connected to a network again.

Line 52:

In 2014, it was revealed that Adobe Digital Editions, Adobe’s e-book reading application, reported extensive information about users' reading habits back to Adobe. This included several unique identifiers, such as which e-books were added to the application, when each one was opened, and for how long, as well as the percentage read and page navigation information.

All of this information was transmitted completely unencrypted in plain text. This meant that someone else using the same public Wi-Fi as another user would have been able to track their reading activities in real-time, entirely undetected.<ref>{{Cite web |last=Gallagher |first=Sean |date=8 Oct 2014 |title=Adobe’s e-book reader sends your reading logs back to Adobe—in plain text |url=https://arstechnica.com/information-technology/2014/10/adobes-e-book-reader-sends-your-reading-logs-back-to-adobe-in-plain-text/ |url-status=live |access-date=16 Mar 2025 |website=[[ArsTechnica]]}}</ref>

All of this information was transmitted completely unencrypted in plain text. This meant that someone else using the same public Wi-Fi as another user would have been able to track their reading activities in real-time, entirely undetected.<ref>{{Cite web |last=Gallagher |first=Sean |date=8 Oct 2014 |title=Adobe’s e-book reader sends your reading logs back to Adobe—in plain text |url=https://arstechnica.com/information-technology/2014/10/adobes-e-book-reader-sends-your-reading-logs-back-to-adobe-in-plain-text/ |url-status=live |archive-url=https://archive.ph/gwRVe |archive-date=28 Nov 2024 |access-date=16 Mar 2025 |website=[[ArsTechnica]]}}</ref>

===User information leaks and data breaches===

In 2013, credit card information and personal data of 38 million users were exposed in a data breach.<ref>{{Cite web |last=Patel |first=Maaz |date=26 Mar 2023 |title=The Adobe Attack of 2013: A Cautionary Tale of Cybersecurity Failure |url=https://medium.com/@maazptl240602/the-adobe-attack-of-2013-a-cautionary-tale-of-cybersecurity-failure-1ef4ec74eb64 |url-status=live |access-date=16 Mar 2025 |website=[[Medium]]}}</ref>

In 2013, credit card information and personal data of 38 million users were exposed in a data breach.<ref>{{Cite web |last=Patel |first=Maaz |date=26 Mar 2023 |title=The Adobe Attack of 2013: A Cautionary Tale of Cybersecurity Failure |url=https://medium.com/@maazptl240602/the-adobe-attack-of-2013-a-cautionary-tale-of-cybersecurity-failure-1ef4ec74eb64 |url-status=live |archive-url=https://archive.ph/xqXwd |archive-date=11 Jun 2024 |access-date=16 Mar 2025 |website=[[Medium]]}}</ref>

In 2019, Adobe left approximately 7.5 million Creative Cloud customer records publicly accessible online due to gross negligence. The database was not protected with a password.<ref>{{Cite web |last=Cimpanu |first=Catalin |date=26 Oct 2019 |title=Adobe left 7.5 million Creative Cloud user records exposed online |url=https://www.zdnet.com/article/adobe-left-7-5-million-creative-cloud-user-records-exposed-online/ |url-status=live |access-date=16 Mar 2025 |website=[ZDNet]}}</ref>

In 2019, Adobe left approximately 7.5 million Creative Cloud customer records publicly accessible online due to gross negligence. The database was not protected with a password.<ref>{{Cite web |last=Cimpanu |first=Catalin |date=26 Oct 2019 |title=Adobe left 7.5 million Creative Cloud user records exposed online |url=https://www.zdnet.com/article/adobe-left-7-5-million-creative-cloud-user-records-exposed-online/ |url-status=live |archive-url=https://archive.ph/KDsVc |archive-date=5 Jan 2026 |access-date=16 Mar 2025 |website=[ZDNet]}}</ref>

===Paywalls Pantone colors and changes user files===

Adobe and Pantone change colors in users' existing files in Photoshop and Illustrator to black unless they pay an additional $15/month. <ref>{{Cite web |title=You now have to pay to use Pantone colors in Adobe products |url=https://www.theverge.com/2022/11/1/23434305/adobe-pantone-subscription-announcement-photoshop-illustrator |website=The Verge}}</ref><ref>{{Cite web |title=Adobe Just Held a Bunch of Colors Hostage |url=https://www.wired.com/story/adobe-pantone-color-subscription-fee/ |website=Wired}}</ref>

Adobe and Pantone change colors in users' existing files in Photoshop and Illustrator to black unless they pay an additional $15/month. <ref>{{Cite web |title=You now have to pay to use Pantone colors in Adobe products |url=https://www.theverge.com/2022/11/1/23434305/adobe-pantone-subscription-announcement-photoshop-illustrator |url-status=live |archive-url=https://archive.ph/uoPg0 |archive-date=1 Nov 2022 |website=The Verge}}</ref><ref>{{Cite web |title=Adobe Just Held a Bunch of Colors Hostage |url=https://www.wired.com/story/adobe-pantone-color-subscription-fee/ |url-status=live |archive-url=https://archive.ph/mh7w6 |archive-date=10 Nov 2022 |website=Wired}}</ref>

==Products==

@@ Line 13: / Line 13: @@
 ===Lack of ownership===
-In 2013, Adobe switched from a perpetual license model to a subscription model (Creative Cloud).<ref name=":0">{{Cite web |last=Cunningham |first=Andrew |date=2013-05-06 |title=Adobe’s Creative Suite is dead, long live the Creative Cloud |url=https://arstechnica.com/information-technology/2013/05/adobes-creative-suite-is-dead-long-live-the-creative-cloud/ |url-status=live |access-date=2025-09-30 |website=Ars Technica}}</ref><ref name=":1">{{Cite web |last=Campbell-Dollaghan |first=Kelsey |date=2013-05-06 |title=Say Goodbye to Creative Suite: Adobe CS Is Now Creative Cloud |url=https://gizmodo.com/say-goodbye-to-creative-suite-adobe-rebrands-cs-as-cre-493155052 |access-date=2025-05-06 |website=Gizmodo}}</ref><ref name=":2">{{Cite web |date=2013-05-06 |title=Adobe heralds subscription-only future for Photoshop and Creative Suite |url=http://www.dpreview.com/news/2013/05/06/Adobe-kills-perpetual-licenses-as-creative-suite-moves-to-creative-cloud-cc |archive-url=https://web.archive.org/web/20130622072403/http://www.dpreview.com/news/2013/05/06/Adobe-kills-perpetual-licenses-as-creative-suite-moves-to-creative-cloud-cc |archive-date=2013-06-22 |access-date=2025-09-30 |website=Digital Photography Review}}</ref>
+In 2013, Adobe switched from a perpetual license model to a subscription model (Creative Cloud).<ref name=":0">{{Cite web |last=Cunningham |first=Andrew |date=2013-05-06 |title=Adobe’s Creative Suite is dead, long live the Creative Cloud |url=https://arstechnica.com/information-technology/2013/05/adobes-creative-suite-is-dead-long-live-the-creative-cloud/ |url-status=live |archive-url=https://archive.ph/cxcNR |archive-date=2026-01-04 |access-date=2025-09-30 |website=Ars Technica}}</ref><ref name=":1">{{Cite web |last=Campbell-Dollaghan |first=Kelsey |date=2013-05-06 |title=Say Goodbye to Creative Suite: Adobe CS Is Now Creative Cloud |url=https://gizmodo.com/say-goodbye-to-creative-suite-adobe-rebrands-cs-as-cre-493155052 |url-status=live |archive-url=https://archive.ph/0LcBS |archive-date=2026-01-04 |access-date=2025-05-06 |website=Gizmodo}}</ref><ref name=":2">{{Cite web |date=2013-05-06 |title=Adobe heralds subscription-only future for Photoshop and Creative Suite |url=http://www.dpreview.com/news/2013/05/06/Adobe-kills-perpetual-licenses-as-creative-suite-moves-to-creative-cloud-cc |url-status=live |archive-url=https://web.archive.org/web/20130622072403/http://www.dpreview.com/news/2013/05/06/Adobe-kills-perpetual-licenses-as-creative-suite-moves-to-creative-cloud-cc |archive-date=2013-06-22 |access-date=2025-09-30 |website=Digital Photography Review}}</ref>
 ===Proprietary file formats===
-Works created in Adobe software come in Adobe-exclusive file formats such as .psd for Photoshop<ref>{{Cite web |last=Smith |first=Colin |date= |title=Most commonly used file types in Photoshop |url=https://photoshopcafe.com/commonly-used-file-types-photoshop/ |access-date=2025-09-30 |website=Photoshop CAFE}}</ref><ref>{{Cite web |last=Williams |first=Brendan |date=2023-10-12 |title=File Formats In Photoshop Explained (Complete List) |url=https://www.bwillcreative.com/file-formats-in-photoshop-explained/ |access-date=2025-09-30 |website=Brendan Williams Creative}}</ref> and .indd for InDesign.<ref>{{Cite web |title=Which File Format?: A Guide to INDD, IDML, INX and Everything In-Between |url=https://indesignskills.com/tutorials/open-indesign-files-in-earlier-versions/ |access-date=2025-09-30 |website=InDesign Skills}}</ref>
+Works created in Adobe software come in Adobe-exclusive file formats such as .psd for Photoshop<ref>{{Cite web |last=Smith |first=Colin |date= |title=Most commonly used file types in Photoshop |url=https://photoshopcafe.com/commonly-used-file-types-photoshop/ |url-status=live |archive-url=https://archive.ph/0ZT6H |archive-date=2026-01-04 |access-date=2025-09-30 |website=Photoshop CAFE}}</ref><ref>{{Cite web |last=Williams |first=Brendan |date=2023-10-12 |title=File Formats In Photoshop Explained (Complete List) |url=https://www.bwillcreative.com/file-formats-in-photoshop-explained/ |url-status=live |archive-url=https://archive.ph/mTNlg |archive-date=2026-01-04 |access-date=2025-09-30 |website=Brendan Williams Creative}}</ref> and .indd for InDesign.<ref>{{Cite web |title=Which File Format?: A Guide to INDD, IDML, INX and Everything In-Between |url=https://indesignskills.com/tutorials/open-indesign-files-in-earlier-versions/ |url-status=live |archive-url=https://archive.ph/SumKq |archive-date=2026-01-04 |access-date=2025-09-30 |website=InDesign Skills}}</ref>
 ===Data breaches===
-In 2013, Adobe disclosed a data breach affecting approximately 3 million customers. This number was later revised to approximately 38 million. <ref>{{Cite web |last=Finkle |first=Jim |date=29 Oct 2013 |title=Adobe data breach more extensive than previously disclosed |url=https://www.reuters.com/article/technology/adobe-data-breach-more-extensive-than-previously-disclosed-idUSBRE99S1DJ |website=reuters.com/}}</ref> This incident resulted in a $1,000,000 settlement and a commitment to implementing new security policies. <ref>{{Cite web |date=15 Nov 2016 |title=Adobe to Pay $1 Million, Update Security Policies to Resolve Multistate Investigation Into Data Breach |url=https://www.mass.gov/news/adobe-to-pay-1-million-update-security-policies-to-resolve-multistate-investigation-into-data-breach |website=mass.gov}}</ref> In 2019, researchers discovered that Adobe's Elasticsearch database was insecure, potentially exposing the information of approximately 7.5 million users. <ref>{{Cite web |last=Khandelwal |first=Swati |date=26 Oct 2019 |title=Unsecured Adobe Server Exposes Data for 7.5 Million Creative Cloud Users |url=https://thehackernews.com/2019/10/adobe-database-leaked.html?utm_source=chatgpt.com}}</ref> Breaches impacting U.S. federal agencies and Adobe Commerce/Magento stores also occurred in 2023 and 2024, respectively. <ref>{{Cite web |date=5 Dec 2023 |title=Threat Actors Exploit Adobe ColdFusion CVE-2023-26360 for Initial Access to Government Servers |url=https://www.cisa.gov/news-events/cybersecurity-advisories/aa23-339a |website=cisa.gov}}</ref><ref>{{Cite web |last=Sansec Forensics Team |date=1 Oct 2024 |title=Thousands of Adobe Commerce stores hacked in competing CosmicSting campaigns |url=https://sansec.io/research/cosmicsting-fallout |website=sansec.io}}</ref>
+In 2013, Adobe disclosed a data breach affecting approximately 3 million customers. This number was later revised to approximately 38 million. <ref>{{Cite web |last=Finkle |first=Jim |date=29 Oct 2013 |title=Adobe data breach more extensive than previously disclosed |url=https://www.reuters.com/article/technology/adobe-data-breach-more-extensive-than-previously-disclosed-idUSBRE99S1DJ |website=reuters.com/}}</ref> This incident resulted in a $1,000,000 settlement and a commitment to implementing new security policies. <ref>{{Cite web |date=15 Nov 2016 |title=Adobe to Pay $1 Million, Update Security Policies to Resolve Multistate Investigation Into Data Breach |url=https://www.mass.gov/news/adobe-to-pay-1-million-update-security-policies-to-resolve-multistate-investigation-into-data-breach |url-status=live |archive-url=https://archive.ph/nSVpL |archive-date=2026-01-04 |website=mass.gov}}</ref> In 2019, researchers discovered that Adobe's Elasticsearch database was insecure, potentially exposing the information of approximately 7.5 million users. <ref>{{Cite web |last=Khandelwal |first=Swati |date=26 Oct 2019 |title=Unsecured Adobe Server Exposes Data for 7.5 Million Creative Cloud Users |url=https://thehackernews.com/2019/10/adobe-database-leaked.html?utm_source=chatgpt.com |url-status=live |archive-url=https://archive.ph/UfO7n |archive-date=2026-01-04}}</ref> Breaches impacting U.S. federal agencies and Adobe Commerce/Magento stores also occurred in 2023 and 2024, respectively. <ref>{{Cite web |date=5 Dec 2023 |title=Threat Actors Exploit Adobe ColdFusion CVE-2023-26360 for Initial Access to Government Servers |url=https://www.cisa.gov/news-events/cybersecurity-advisories/aa23-339a |url-status=live |archive-url=https://archive.ph/8g4C3 |archive-date=2026-01-04 |website=cisa.gov}}</ref><ref>{{Cite web |last=Sansec Forensics Team |date=1 Oct 2024 |title=Thousands of Adobe Commerce stores hacked in competing CosmicSting campaigns |url=https://sansec.io/research/cosmicsting-fallout |url-status=live |archive-url=https://archive.ph/vj2if |archive-date=2026-01-04 |website=sansec.io}}</ref>
 ==Incidents==
@@ Line 43: / Line 43: @@
 ===User documents forced into the cloud with no opt-out===
-Some of Adobe's iPad applications, including, but not limited to, the digital painting application Adobe Fresco<ref>{{Cite web |author=PaulaArtist2 |date=2021-12-13 |title=[How To] Save work locally / work offline |url=https://community.adobe.com/t5/fresco-discussions/how-to-save-work-locally-work-offline/m-p/12390252 |access-date=2025-09-22 |website=Adobe Community}}</ref> and the document scanning application Adobe Scan<ref>{{Cite web |last=Tagra |first=Ria |date=2021-06-14 |title=Does Adobe Scan offer a way to not utilize the Adobe Cloud |url=https://community.adobe.com/t5/adobe-scan-discussions/does-adobe-scan-offer-a-way-to-not-utilize-the-adobe-cloud/m-p/12104402 |access-date=2025-09-22 |website=Adobe Community}}</ref>, require an account to access and do not offer any option to opt out of syncing all documents created in these applications with Adobe's cloud servers. Similarly, the new non-Classic versions of Lightroom are fundamentally built around uploading all images to Adobe's cloud.
+Some of Adobe's iPad applications, including, but not limited to, the digital painting application Adobe Fresco<ref>{{Cite web |author=PaulaArtist2 |date=2021-12-13 |title=[How To] Save work locally / work offline |url=https://community.adobe.com/t5/fresco-discussions/how-to-save-work-locally-work-offline/m-p/12390252 |url-status=live |archive-url=https://archive.ph/WreAh |archive-date=2026-01-04 |access-date=2025-09-22 |website=Adobe Community}}</ref> and the document scanning application Adobe Scan<ref>{{Cite web |last=Tagra |first=Ria |date=2021-06-14 |title=Does Adobe Scan offer a way to not utilize the Adobe Cloud |url=https://community.adobe.com/t5/adobe-scan-discussions/does-adobe-scan-offer-a-way-to-not-utilize-the-adobe-cloud/m-p/12104402 |url-status=live |archive-url=https://archive.ph/cO5G1 |archive-date=2026-01-04 |access-date=2025-09-22 |website=Adobe Community}}</ref>, require an account to access and do not offer any option to opt out of syncing all documents created in these applications with Adobe's cloud servers. Similarly, the new non-Classic versions of Lightroom are fundamentally built around uploading all images to Adobe's cloud.
 There is no end-to-end encryption, i.e., Adobe has full access to all of these files. Disabling internet access allows the user to work offline, but any files created in the affected apps will immediately sync to the cloud in the background as soon as the device is connected to a network again.
@@ Line 52: / Line 52: @@
 In 2014, it was revealed that Adobe Digital Editions, Adobe’s e-book reading application, reported extensive information about users' reading habits back to Adobe. This included several unique identifiers, such as which e-books were added to the application, when each one was opened, and for how long, as well as the percentage read and page navigation information.
-All of this information was transmitted completely unencrypted in plain text. This meant that someone else using the same public Wi-Fi as another user would have been able to track their reading activities in real-time, entirely undetected.<ref>{{Cite web |last=Gallagher |first=Sean |date=8 Oct 2014 |title=Adobe’s e-book reader sends your reading logs back to Adobe—in plain text |url=https://arstechnica.com/information-technology/2014/10/adobes-e-book-reader-sends-your-reading-logs-back-to-adobe-in-plain-text/ |url-status=live |access-date=16 Mar 2025 |website=[[ArsTechnica]]}}</ref>
+All of this information was transmitted completely unencrypted in plain text. This meant that someone else using the same public Wi-Fi as another user would have been able to track their reading activities in real-time, entirely undetected.<ref>{{Cite web |last=Gallagher |first=Sean |date=8 Oct 2014 |title=Adobe’s e-book reader sends your reading logs back to Adobe—in plain text |url=https://arstechnica.com/information-technology/2014/10/adobes-e-book-reader-sends-your-reading-logs-back-to-adobe-in-plain-text/ |url-status=live |archive-url=https://archive.ph/gwRVe |archive-date=28 Nov 2024 |access-date=16 Mar 2025 |website=[[ArsTechnica]]}}</ref>
 ===User information leaks and data breaches===
-In 2013, credit card information and personal data of 38 million users were exposed in a data breach.<ref>{{Cite web |last=Patel |first=Maaz |date=26 Mar 2023 |title=The Adobe Attack of 2013: A Cautionary Tale of Cybersecurity Failure |url=https://medium.com/@maazptl240602/the-adobe-attack-of-2013-a-cautionary-tale-of-cybersecurity-failure-1ef4ec74eb64 |url-status=live |access-date=16 Mar 2025 |website=[[Medium]]}}</ref>
+In 2013, credit card information and personal data of 38 million users were exposed in a data breach.<ref>{{Cite web |last=Patel |first=Maaz |date=26 Mar 2023 |title=The Adobe Attack of 2013: A Cautionary Tale of Cybersecurity Failure |url=https://medium.com/@maazptl240602/the-adobe-attack-of-2013-a-cautionary-tale-of-cybersecurity-failure-1ef4ec74eb64 |url-status=live |archive-url=https://archive.ph/xqXwd |archive-date=11 Jun 2024 |access-date=16 Mar 2025 |website=[[Medium]]}}</ref>
-In 2019, Adobe left approximately 7.5 million Creative Cloud customer records publicly accessible online due to gross negligence. The database was not protected with a password.<ref>{{Cite web |last=Cimpanu |first=Catalin |date=26 Oct 2019 |title=Adobe left 7.5 million Creative Cloud user records exposed online |url=https://www.zdnet.com/article/adobe-left-7-5-million-creative-cloud-user-records-exposed-online/ |url-status=live |access-date=16 Mar 2025 |website=[ZDNet]}}</ref>
+In 2019, Adobe left approximately 7.5 million Creative Cloud customer records publicly accessible online due to gross negligence. The database was not protected with a password.<ref>{{Cite web |last=Cimpanu |first=Catalin |date=26 Oct 2019 |title=Adobe left 7.5 million Creative Cloud user records exposed online |url=https://www.zdnet.com/article/adobe-left-7-5-million-creative-cloud-user-records-exposed-online/ |url-status=live |archive-url=https://archive.ph/KDsVc |archive-date=5 Jan 2026 |access-date=16 Mar 2025 |website=[ZDNet]}}</ref>
 ===Paywalls Pantone colors and changes user files===
-Adobe and Pantone change colors in users' existing files in Photoshop and Illustrator to black unless they pay an additional $15/month. <ref>{{Cite web |title=You now have to pay to use Pantone colors in Adobe products |url=https://www.theverge.com/2022/11/1/23434305/adobe-pantone-subscription-announcement-photoshop-illustrator |website=The Verge}}</ref><ref>{{Cite web |title=Adobe Just Held a Bunch of Colors Hostage |url=https://www.wired.com/story/adobe-pantone-color-subscription-fee/ |website=Wired}}</ref>
+Adobe and Pantone change colors in users' existing files in Photoshop and Illustrator to black unless they pay an additional $15/month. <ref>{{Cite web |title=You now have to pay to use Pantone colors in Adobe products |url=https://www.theverge.com/2022/11/1/23434305/adobe-pantone-subscription-announcement-photoshop-illustrator |url-status=live |archive-url=https://archive.ph/uoPg0 |archive-date=1 Nov 2022 |website=The Verge}}</ref><ref>{{Cite web |title=Adobe Just Held a Bunch of Colors Hostage |url=https://www.wired.com/story/adobe-pantone-color-subscription-fee/ |url-status=live |archive-url=https://archive.ph/mh7w6 |archive-date=10 Nov 2022 |website=Wired}}</ref>
 ==Products==