How many breaches has Uber had?

Uber has experienced its third security breach in less than six months, due to a breach at one of its contracted law firms. They also experienced a third party security breach that compromised their digital supply chain security.



Uber has experienced several high-profile data breaches and security incidents throughout its history. Significant events include a 2014 breach affecting 100,000 users, and a massive 2016 breach where hackers stole data from 57 million customers and drivers (which Uber famously paid 100,000tohide).In∗∗September2022∗∗,asophisticatedsocialengineeringattackbytheLapsus group gave a hacker access to Uber’s internal Slack, G-Suite, and AWS environments. In late 2022 and early 2023, the company faced additional leaks via third-party vendors and law firms. While Uber has since implemented much more rigorous "Zero Trust" security and Multi-Factor Authentication (MFA) protocols to combat "MFA fatigue" and social engineering, these historical incidents have made the company a case study in both cybersecurity vulnerability and the legal consequences of non-disclosure.

People Also Ask

The hacker, who was eventually arrested and is in police custody, is said to have gained access to Uber's secure data through “social engineering,” which means manipulating or deceiving someone, often with email or phone calls, to gain access to personal or financial information.

MORE DETAILS

In September, ridesharing company Uber disclosed that hackers had stolen the personal information of about 57 million customers and drivers. The days following the attack were full of speculation around how the attacker – allegedly a 17 year old – was able to gain access to the systems.

MORE DETAILS

At the time, Uber was not just one of the world's fastest-growing companies - it was one of the most controversial, dogged by court cases, allegations of sexual harassment, and data breach scandals. Eventually shareholders had enough, and Travis Kalanick was forced out in 2017.

MORE DETAILS

Details: A London jury determined that both Kurtaj and an unnamed 17-year-old hacker were behind several criminal hacking offenses. Kurtaj was described to the jury as the sole person who broke into Uber, fintech firm Revolut and RockStar Games in September 2022.

MORE DETAILS

Arion Kurtaj, 18, embarked on a solo cybercrime spree in September 2022 while on police bail for earlier offences. He targeted Revolut, accessing around 5,000 Revolut customers' information, and then Uber two days later, causing nearly $3 million of damage to Uber, prosecutors said. Revolut declined to comment.

MORE DETAILS

Riding in an Uber isn't any more dangerous than driving yourself or riding with your parents or taking a taxi (well, actually probably safer than driving yourself at 18). Do the same things that you would normally do to stay safe while approaching the vehicle, while on the road, and when leaving the vehicle.

MORE DETAILS

In April of 2017, another secret was uncovered: Uber executives were using software installed in their drivers' cars to spy on rival rideshare companies. Since the drivers were independent contractors, they can drive for both Lyft and Uber.

MORE DETAILS

Uber's former chief security officer has avoided jail and been sentenced to three years' probation for covering up a cyber-attack from authorities. Joseph Sullivan was found guilty of paying hackers $100,000 (£79,000) after they gained access to 57 million records of Uber customers, including names and phone numbers.

MORE DETAILS

We identified any employee accounts that were compromised or potentially compromised and either blocked their access to Uber systems or required a password reset. We disabled many affected or potentially affected internal tools. We rotated keys (effectively resetting access) to many of our internal services.

MORE DETAILS

Uber hired Sullivan as its first Chief Security Officer (“CSO”) following a data breach in September 2014 related to the unauthorized access of approximately 50,000 consumers' personal information, including their names and drivers' license numbers.

MORE DETAILS

Uber is trialing video recording during rides in an effort to improve safety features. Drivers will be able to use the front-facing camera on their phones to record video through Uber's Driver app, it was announced Thursday.

MORE DETAILS

Uber is owned majorly by a group of institutional investors like Morgan Stanley, The Vanguard Group, and FMR. Individual investors, especially employees of the companies — like the CEO and the COO — own a significant part of the company. The current CEO of Uber company is Dara Khosrowshahi.

MORE DETAILS