Jump to content
Login new information ×
Login new information
  • Security & Privacy News

    Uber faces major cybersecurity breach, investigation underway [Update]

    Karlston

    By Karlston,
    Published Date:

    • 1 comment
    • 508 views
    • 2 minutes
     Share
    • 1 comment
    • 508 views
    • 2 minutes

    Cab service Uber has reportedly suffered from a major cybersecurity attack, compromising several internal communications systems and engineering systems, and taking them offline. The company has confirmed the breach in a tweet.

     

    Uber didn’t reveal the details about the incident or whether any user data was compromised but confirmed that the cyber-criminal was able to post on the company’s Slack after compromising a worker’s account. The hacker is believed to have social-engineered the worker to get hold of password details by masquerading as a corporate IT person and then using it to get access to internal systems and posting an explicit photo on an internal page with a message that the company had suffered a major data breach.

     

     

    The hacker also claims to have compromised Uber's system by posting images of their AWS instance, vSphere, Google Workplace data, and more.

     

    To prevent any further damage, Uber instructed its staff not to use Slack. Other internal systems, too, were made inaccessible to them. The company said that it was investigating a 'cybersecurity incident' after a hacker shared evidence that they had breached its computer systems with journalists and security researchers.

     

    The officials from the Uber Comms Twitter handle tweeted:

     

    We are currently responding to a cybersecurity incident. We are in touch with law enforcement and will post additional updates here as they become available.

     

    This is not the ride-hailing company’s first breach. It suffered from a similar attack in 2016. The breach then affected 57 million riders and drivers. It came under scrutiny for failing to fully disclose the incident and paying off the hackers $100,000 to hide the event. It only became publicly known in late 2017.

     

    1663340839_uber_financial_details_story.

     

    Update: It appears things are going from bad to worse for Uber. We have now learned that the hacker has disclosed Uber's financial data. Even after reporting the incident many hours ago, Uber has not provided any information about its findings.

     

    Source: New York Times, UberComms | Image: Uber Newsroom, VX-underground

     

     

    Uber faces major cybersecurity breach, investigation underway [Update]

     Share
    Go to news

    User Feedback

    Recommended Comments

    Arachnoid

    Lawrence Systems issued an informative youtube video discussing the problem yesterday ,its likely the company were very lax on cyber security both in updating to new technology and siloing access. On the flip side fortunatly for them, it looks like a script kiddy gained access and not a ransomware attacker.

    Link to comment
    Share on other sites


    Join the conversation

    You can post now and register later. If you have an account, sign in now to post with your account.
    Note: Your post will require moderator approval before it will be visible.

    Guest
    Add a comment...

    ×   Pasted as rich text.   Paste as plain text instead

      Only 75 emoji are allowed.

    ×   Your link has been automatically embedded.   Display as a link instead

    ×   Your previous content has been restored.   Clear editor

    ×   You cannot paste images directly. Upload or insert images from URL.

    ×

  • Recently Browsing   0 members

    • No registered users viewing this page.
×
×
  • Create New...