Sunday, September 18, 2022
HomeHackerUber Downplays Information Breach Affect, Claims No Delicate Information Stolen

Uber Downplays Information Breach Affect, Claims No Delicate Information Stolen


Earlier, Hackread.com reported that the ride-hailing service’s company community was breached, after which a number of engineering programs and inside communications have been taken offline.

It was additionally reported that Uber stopped its staff from utilizing Uber’s devoted office messaging app Slack and launched a probe into the incident. Listed below are the newest findings.

It began when a hacker, who claimed to be an 18-years-old male, accessed Uber’s communications system after hijacking a employee’s Slack account and compromising varied inside databases of the corporate.

Uber Investigating Hacker's Claims of Infiltrating Its Internal Computer Systems
Message posted by the hacker on Uber’s official Slack channel

The hacker blamed Uber’s weak safety for efficiently compromising its databases and offered screenshots of the corporate’s inside programs as proof of the assault.

The hacker went on to contact theΒ New York Occasions claiming that he hacked Uber for enjoyable and has its supply code in his possession, which he would possibly leak quickly.

Uber Investigating Hacker's Claims of Infiltrating Its Internal Computer Systems
Screenshots of Uber’s inside system leaked by the hacker

Investigation Particulars

In line with Uber, the investigation continues to be underway, however there was no proof that the hacker accessed delicate consumer information. Moreover, all Uber providers, together with Uber Freight, Uber Eats, Uber Drive, and Uber, have been totally practical on Friday. The newest replace is that Uber’s inside software program instruments are additionally on-line.

Uber acknowledged that it’s in touch with related legislation enforcement authorities and has collaborated with the FBI for an in-depth investigation. In a tweet, the corporate stated:

All of our providers together with Uber, Uber Eats, Uber Freight, and the Uber Driver app at the moment are bringing again on-line its inside software program instruments. As we shared yesterday, now we have notified legislation enforcement.”

Delicate Information Wasn’t Uncovered

On its safety replace web page, Uber claimed that customers’ private info was secure, and there was no proof that the hacker accessed the knowledge. The corporate shared that journey historical past information wasn’t uncovered, and all of the providers have been up and working.

Nevertheless, Uber didn’t reply to queries relating to whether or not the breach impacted its purposes.

Then again, Unbiased safety researcher Invoice Demirkapi isn’t shopping for this β€˜no proof’ principle. Demirkapi believes this stance is unclear as a result of it signifies that the attacker might need accessed the knowledge, and Uber simply hasn’t discovered proof of infiltration.

Furthermore, Demirkapi acknowledged that Uber has talked about delicate information wasn’t uncovered and kept away from utilizing the time period information. This additionally hints that there’s a chance of information publicity.

Uber’s Historical past of Rubbishing Seriousness of Safety Points

Uber is nearly reaching a 100 million buyer base. The corporate has a presence in 71 nations and 10,000 cities throughout the globe nevertheless its method to hacking and safety vulnerabilities has all the time been dismissive.

In January 2018, as reported by Hackread.com, an Indian IT safety researcherΒ Karan Saini found a vital safety flaw within the two-factor authentication (2FA) protocol utilized by Uber. The flaw would enable attackers to bypassΒ 2FAΒ which may apparently cause them to carry out quite a lot of malicious acts.

Saini reported the bug toΒ Uber’s bug bounty program on HackerOne, who acknowledgedΒ that there’s certainly a bug in its 2FA however on the similar time the corporate downplayed the severity of it and acknowledged that his findings have been informative however β€œthis report contained helpful info however didn’t warrant an instantaneous motion or a repair.”

Uber pays cybercriminals however to not the nice guys

In November 2017 studies surfaced that UberΒ suffered a large safety breachΒ in October 2016 by which hackers stoleΒ personal particulars of round 75 million of its customers. In return, the corporate paid $100,000 to hackers to cover the breach.

On your info, within the breach, two hackers stole information containing names and license numbers of 600,000 drivers from the US and private information comparable to names, electronic mail IDs and cell phone numbers ofΒ 57 million UberΒ customers from throughout the globe.Β 

How Uber was Hacked?

How Uber was hack? That may be a million greenback questions. Nevertheless, Marcus Hutchins, the safety researcher who protected the world from the notorious WannaCry ransomware assault claims to have the reply. Watch his newest video by which Hutchins handle the Uber hack.

  1. Tons of of Uber Eats Person information leaked on Darkish Internet
  2. Hacked Uber Accounts of US Based mostly Clients Utilized in China
  3. Uber Rival Careem Hacked, 14 million buyer & driver information stolen
  4. Uber customers beware; Faketoken Android malware hits ride-sharing apps
  5. Ex-Uber CSO Joseph Sullivan charged over 2016 information breach cowl up



RELATED ARTICLES

LEAVE A REPLY

Please enter your comment!
Please enter your name here

- Advertisment -
Google search engine

Most Popular

Recent Comments