Earlier this month, Adobe announced that 2.9 million customers were affected in a major data breach. But it turns out that the breach went much further, affecting 38 million users, according to a report from Naked Security. The attackers gained access to users' customer IDs, names, encrypted passwords, encrypted debit and credit card numbers and other personal data.

"So far, our investigation has confirmed that the attackers obtained access to Adobe IDs and (what were at the time valid), encrypted passwords for approximately 38 million active users," said Adobe spokesperson Heather Edell.

Adobe initially believed the hackers accessed source code from Adobe Reader, Acrobat and ColdFusion. However, new data shows that a portion of source code for its Photoshop software was stolen, too.

The company set up a help page for affected users and notified them to reset their passwords. They also advised users to change their passwords entirely, not only for Adobe products, but also for other sites where they used the same password.