Uber Says It's Investigating A 'Cybersecurity Incident'

SHARE THIS ARTICLE

REACH US

GENERAL INQUIRY

[email protected]

ADVERTISING

[email protected]

PRESS RELEASE

[email protected]

HOTLINE

+673 222-0178 [Office Hour]

+673 223-6740 [Fax]

Upcoming Events

Prayer Times

The prayer times for Brunei-Muara and Temburong districts. For Tutong add 1 minute and for Belait add 3 minutes.

Imsak	: 05:01 AM
Subuh	: 05:11 AM
Syuruk	: 06:29 AM
Doha	: 06:51 AM
Zohor	: 12:32 PM
Asar	: 03:44 PM
Maghrib	: 06:32 PM
Isyak	: 07:42 PM

The Business Directory

Security & Privacy

Home > Security & Privacy

Uber Says It's Investigating A 'Cybersecurity Incident'

nycshooter via Getty Images

September 16th, 2022 | 15:52 PM | 445 views

ENGADGET

The company has yet to reveal if user data was compromised in the breach.

Uber was hacked, and it had to take its internal messaging service and engineering systems offline to investigate the incident, according to The New York Times. Sources who talked to the publication said employees were instructed not to go on Slack, where the bad actor had posted a message that read "I announce I am a hacker and Uber has suffered a data breach" (along with a bunch of emoji) before it was pulled offline. In a tweet confirming the breach, the company said that it's currently responding to a cybersecurity incident and that it's now in touch with law enforcement.

The company didn't say what exactly the hacker was able to access and if user data was compromised. The Times says the hacker's Slack message also listed databases they claim they were able to infiltrate, though. And based on screenshots seen by The Washington Post, the bad actor boasted about being able to gather internal code and messaging data. An Uber spokesperson explained that the bad actor was able to post on the company Slack after compromising a worker's account. They then gained access to Uber's other internal systems and posted an explicit photo on an internal page.

Bug bounty hunter and security researcher Sam Curry tweeted information reportedly from an Uber employee that could be about that explicit photo:

Uber admitting the incident and getting in touch with authorities shortly after it happened is a massive departure from how it handled the data breach it suffered back in 2016. The company hid that attack for a year and instead of reporting the incident, it paid the hackers $100,000 to delete the information they stole. Former Uber security chief Joseph Sullivan was fired and eventually charged with obstruction of justice for the role he played in the coverup, though his lawyers argued that he was used as a scapegoat. Uber settled with the Justice Department for failing to disclose the breach in July this year.

Source:
courtesy of ENGADGET

by Mariella Moon

If you have any stories or news that you would like to share with the global online community, please feel free to share it with us by contacting us directly at [email protected]