Adobe’s Digital Editions software insecurely sends back ebook reading history to Adobe in an effort to stop piracy.
Adobe said that particular policy ends up covered in its terms and conditions.
Version 4 of the application makes a note of every page read, and then sends that data over the Internet unencrypted to Adobe.
Nate Hoffelder of The Digital Reader blog found the issue. He also said in a blog the plaintext information transmitted also includes the title, publisher, and other metadata about the ebooks. This data is important, Adobe said, to enforce usage licenses covering the books.
“All information collected from the user is collected solely for purposes such as license validation and to facilitate the implementation of different licensing models by publishers,” Adobe said in a statement.
Adobe said it will change the sending information over in unprotected plaintext.
Adobe explained the data it collects is for digital rights management (DRM) mechanisms that may end up demanded by publishers to combat piracy.