Adobe Breach Exposure Check - Are You at Risk?

Before you start

A threat actor claims to have accessed Adobe's customer support database via a third-party BPO vendor, reportedly exporting 13 million support tickets. Adobe has not confirmed this as of April 2026.

This assessment helps you understand whether your organisation's support history is likely to have contained sensitive information, and what to do about it.

10 questions, takes about 3 minutes
If you only use Adobe creative tools, the assessment ends early - this primarily affects enterprise B2B platforms
Results are tailored to your specific product stack and usage pattern
Your answers stay in your browser. Only your email is ever sent anywhere - and only if you choose to subscribe at the end

Your answers are processed entirely in your browser. No data is collected during the assessment. This assessment does not require any personal information to complete.

Built by Arjen Segers · Adobe Certified Master (Marketo Engage Architect), MUG Benelux Leader. Read the full analysis →

Which Adobe products does your organisation use?

Select all that apply. This determines whether the breach is relevant to your stack and shapes all subsequent questions.

Marketing Automation & B2B Experience Cloud

Marketo Engage

Enterprise

Adobe Experience Platform (AEP)

Enterprise

Journey Optimizer B2B Edition

Enterprise

Adobe Journey Optimizer

Enterprise

Adobe Real-Time CDP

Enterprise

Adobe Campaign

Enterprise

Analytics, Optimisation & Data

Adobe Analytics (enterprise)

Enterprise

Adobe Target

Enterprise

Customer Journey Analytics

Enterprise

Adobe Audience Manager

Enterprise

Other Enterprise Products

Adobe Experience Manager (AEM)

Enterprise

Adobe Commerce (Magento)

Enterprise

Adobe Workfront

Enterprise

Acrobat Sign (enterprise)

Enterprise

Other enterprise product

Enterprise

Creative Cloud & Consumer Products

Photoshop / Illustrator / InDesign

Creative

Premiere Pro / After Effects

Creative

Lightroom

Creative

Acrobat Pro (personal)

Creative

Adobe Express / Stock / Firefly

Creative

Creative Cloud (individual plan)

Creative

🔒

Creative tools only - lower direct exposure risk

The alleged breach targeted Adobe's customer support database primarily used by enterprise B2B and Experience Cloud customers. Creative Cloud support tickets typically contain less operationally sensitive data - integration configurations, API credentials, and CRM-connected data are specific to enterprise platform usage.

That said, the breach claim remains unverified and developing. Subscribe below to receive updates as the situation evolves - we'll update this assessment when more details emerge.

No spam. Updates only when the story develops.

Read the full analysis →

How long has your organisation been actively using these enterprise products?

Longer usage typically means a larger support case history and more accumulated data in Adobe's support environment.

Less than 1 year

1 to 3 years

More than 3 years

Longer history means more support correspondence over time

Not sure

Is your Adobe platform integrated with a CRM system?

CRM integrations are one of the most common reasons for technical support tickets - and one of the most configuration-heavy. Sync issues typically involve sharing field mappings and record-level details.

Yes - Salesforce

Yes - Microsoft Dynamics / Dynamics 365

Yes - another or custom-built CRM

e.g. HubSpot, Sugar, Pipedrive, an in-house system, or a data warehouse acting as CRM

No CRM integration

Do you use API integrations or third-party tools connected to your Adobe instance?

API troubleshooting often requires sharing authentication tokens, request/response logs, and endpoint configurations - all high-value if exposed.

Yes - several integrations

e.g. data warehouse, enrichment vendors, custom apps, business intelligence tools, or multiple third-party connectors

Yes - one to a few integrations

e.g. a webinar platform (Zoom, ON24, GoToWebinar), a data enrichment tool, a BI connector, or up to three third-party tools

No significant API integrations

Not sure

When your team reproduces issues for Adobe support, do you use a sandbox or test environment with non-production data?

Adobe's support guidance asks for "links to specific leads that are examples of the issue" and uncropped CRM screenshots. Whether those contained real contacts or test data determines the personal data exposure.

Yes - we use test data or sandbox records for support tickets

No - we typically use production data or real records

This is common, especially when issues only reproduce on specific real records

Mixed - sometimes test, sometimes real records

Not sure - I don't know what others on the team submitted

How often does your team contact Adobe support for your enterprise products?

More tickets over time means more accumulated correspondence in the support database - including attachments, screenshots, and logs.

Frequently - multiple tickets per month

Occasionally - a few times per year

Rarely - one or two total

Not sure

Do your marketing databases or platforms contain personal data of EU-based contacts?

If personal data of EU data subjects was submitted in support tickets and the breach is confirmed, GDPR Article 33 creates a 72-hour notification obligation for your organisation as data controller.

Yes - primarily EU contacts

Yes - some EU contacts alongside other regions

No - no EU contacts in scope

Not sure

How many people have admin-level access to your primary Adobe enterprise platform?

More admins typically means more people with access to submit detailed technical tickets, and a wider exposure surface if any credentials were shared in correspondence.

1 to 2 admins

3 to 10 admins

More than 10 admins

Not sure

Have people who no longer work at your organisation previously had admin access to your Adobe platform?

Former team members may have submitted support tickets containing credentials or data that your current team is unaware of - and those credentials may still be active.

Yes - we have had staff turnover in admin or platform roles

Marketo admins, AEP architects, integration developers, or managed service contacts

Possibly - there have been some team changes but I cannot confirm admin access

No - the same people have held admin access throughout

Not sure

Has your team ever shared API keys, authentication tokens, or integration credentials in an Adobe support ticket?

This can happen intentionally (as part of troubleshooting instructions) or by mistake (included in logs or screenshots). Either way, it is the highest-priority credential rotation trigger.

Yes - I know credentials were shared in tickets

Possibly - I'm not certain but it may have happened

No - we have not shared credentials in tickets

Not sure - I cannot verify what others submitted

What type of Adobe support or partner engagement do you use?

Adobe support access is included in all enterprise licenses. This question is about whether you have additional engagement that may have resulted in more detailed or more frequent ticket submissions on your behalf.

Certified Adobe Solution Partner

An external agency, system integrator, or consultancy with official Adobe partner status - they may submit tickets on your behalf

Adobe Professional Services

Adobe's own consulting or implementation team engaged for your project or ongoing work

Adobe Ultimate Support

Premium support tier with a dedicated Technical Account Manager - typically involves more detailed, more frequent technical correspondence

Standard Adobe support only

Included with your enterprise license - your team submits tickets directly

Not sure

Before you start

Creative tools only - lower direct exposure risk

We don’t have the full picture, and neither does anyone else.