Inspiring

Answered

Adobe Stock submission-hacked

Forum|Forum|1 year ago
May 13, 2024
8 replies
6876 views

Hi, lately, whenever I upload my images to Adobe Stock, I get an e-mail conformation that my images got accepted. Thats fine, but when I click on the link from my e mail to see which images are accepted, I get reddirected to another page, and my antivirus is warning me that that specific page is suspicious.
This is the exact mesage I am recieving.

''Your connection to this web page is not safe due to an unmatching security certificate.
This means that the certificate was issued for a different web address than the one it is being used for, and you run the risk of exposing your data by accessing this page.''

Should I be concerned?
Are my images, earnings safe?
What is hacked, my e-mail, my Adobe page?

This never happened before.
Its also happening whenever I submit anything to Adobe, even Missions, and this e-mail looks really genuine, with all the links, font, like it is from Adobe.

Thansk for the help and clarification.

Contributors

This topic has been closed for replies.

Correct answer EvilBug1

Latest update: We were able to make a chagne on our side. All connection to go.adobestock.com are going to https now. This problem shouldn't happen anymore.

Thank everyone for the contribution.

-EB

E

EvilBug1Correct answer

Adobe Employee

Latest update: We were able to make a chagne on our side. All connection to go.adobestock.com are going to https now. This problem shouldn't happen anymore.

Thank everyone for the contribution.

-EB

E

EvilBug1

Adobe Employee

@Marko Subotin Our secuirty team has reviewed this thread and confirmed NO security issue here.
Looks like you browser or email client is using a redirect service called "Mailjet". This redirect service does not have an appropriate SSL certificate for the Adobe subdomain pointing to it, so it's re-writing https to http.

Hope this helps,

-EB

Abambo

Community Expert

@EvilBug1 ,

Can we agree, that the link starts with https://go.adobestock.com and that is an Adobe owned site. When I copy/paste the complete link in my browser on my iPad, with no connection to @Marko Subotin, I get the security warning.

That is impossible, if there is not an issue with that specific link.

ABAMBO | Hard- and Software Engineer | Photographer

E

EvilBug1

Adobe Employee

@Abambo This is correct. both https://go.adobestock.com and http://go.adobestock.com are owned by Adobe and safe to visit. We have plan to rediret all visits to https in near feature.

Abambo

Community Expert

@EvilBug1 ,

I would guess that someone from the Adobe side would be interested in checking the link as provided by @Marko Subotin.

ABAMBO | Hard- and Software Engineer | Photographer

E

EvilBug1

Adobe Employee

Thanks everyone for the contribution. We are reporting this to our security team and will keep you updated here shortly.

Thanks,

-EB

Abambo

Community Expert

Thanks EvilBug1. We appreciate.

ABAMBO | Hard- and Software Engineer | Photographer

Marko SubotinAuthor

Inspiring

Ok, let me dive into this.

Potential Causes

Phishing or Malicious Redirects: If attackers gained access to Adobe's email system or your email, they might be sending you fraudulent links.

Is it possible that the Adobe's e mail system is compromised? Because the e-mails I am recieving have all the images I have sent to the reviewers, and all the images I am sending, I am sending them via this official link . They even have the image ID number in the buttom left corner!
I had problems while sending images to the Missions even. Whenever I am sending a large batch of images, my upload dies at some point, and I have to start it over. Didn't know why, was not of a big deal, but could be that my connection to Adobe is hacked in that way. When I have send the last batch, I have recived an e-mail that all the images got accepted, but that was odd, because I have never recived an e-mail that the Missions got accepted. Only the regular uploads.

Update Your Antivirus: Ensure your antivirus software is up-to-date and run a full system scan.

Done that after reinstalling Photoshop, no malware found now.
Change Passwords: If you suspect your email might be compromised, change your password immediately and enable two-factor authentication if available.

Done a few times now.
Contact Adobe Support: Reach out to Adobe Support to report the issue and verify if they are aware of any problems with their email system.

Will do.

Verifying Email Authenticity

Look for Digital Signatures: Genuine emails from Adobe often include digital signatures or marks indicating they’re from a verified sender.

Dont know how to do that, it quick seach says Gmail is not supporting this.
Inspect Links Before Clicking: Hover over links to see the actual URL they will take you to. Ensure they lead to legitimate Adobe domains.

That's easy
Check for Spelling and Grammar: Phishing emails often contain spelling mistakes or awkward phrasing.

No spelling mistakes, this is a not some Nigerian prince, this is unfortunately someone who knows how to hack, design and write. 😞

My biggest concern here, if my connection to Adobe is hacked, could it be that my earning can be affected somehow?

In this attacchment is the last e-mail I have recieved.

Thanks Milor and others for the help.

Abambo

Community Expert

The answer from @milor374396551xm3 sounds too elaborate to be of their own writing. ChatGPT or similar generated. It may well be that the poster has no clue about this theme. (BTW: too big to fail should also apply to Adobe's e-mail system. And even that is possible to get hacked.)

Your screenshot is a standard stock contributor message. You can't say more from that.

ABAMBO | Hard- and Software Engineer | Photographer

Abambo

Community Expert

Check the URL, that this is really correct (in the e-mail, before clicking...). As a matter of precaution, I never click links in a mail, except if I initiated the mail to be send.

Having a security certificate to expire is not unusual, but should not happen too often, and only rarely with sites like the ones from Adobe. It maybe, however, that you still have the old certificate in your cache.

ABAMBO | Hard- and Software Engineer | Photographer

Marko SubotinAuthor

Inspiring

My friend, who is a cybersecurity expert, says that this is really unusual because Adobe is too big of a company to have the certificates expired. He suggested that I might have malware in my system. I have found it, but it is within some of the folders associated with Photoshop. I really don’t know how, because the program is genuine. It could be that someone sneaked into my system. He advised me to delete my entire system and install a new one from scratch

daniellei4510

Community Expert

You might just try to do a Photoshop uninstall first before re-installing your system from scratch. Maybe that will help. Then reinstall Photoshop.

Adobe Community Expert | If you can't fix it, hide it; if you can't hide it, delete it.

RALPH_L

Community Expert

I would be carefull. Th e url is "adobestock.com". As far as I can tell, Adobe only uses subdomains of "adobe.com".

RALPH_L

Community Expert

I just checked. the url "adobestock.com" redirects to "stock.adobe.com" so the address is ok.

That means that the secure site certificate was expired on the server that you connected to. This can be caused when the updating of all servers takes to long. The issue should be ok in a few hours. If not, you may have to force your browser to download the new certificate. Thi can be difficult and may require you to reasearch how it is done.

Nancy OShea

Community Expert

Clearing cached data & cookies from your browser should fix the problem.

Nancy O'Shea— Product User & Community Expert

Jill_C

Community Expert

If you can access your Contributor page directly, not via the link in the email, your account is secure.

Jill C., Forum Volunteer

photorebelle

Inspiring

Have you tried to enter your site with another device... tablet, phone?

Marko SubotinAuthor

Inspiring

Via my e-mail? I guess that will won't be a good idea. But via any other browser, I rarely do that.

Abambo

Community Expert

Why via your e-mail? You did click a link, so you opened a browser. You could also copy that link and paste into the address bar of a browser that is not your default browser.

This is a question of testing, not of doing that often.

ABAMBO | Hard- and Software Engineer | Photographer

Potential Causes

Verifying Email Authenticity

Sign up

To post, reply, or follow discussions, please sign in with your Adobe ID.

Sign in to Adobe Community

To post, reply, or follow discussions, please sign in with your Adobe ID.

Scanning file for viruses.

This file cannot be downloaded