Was there a security breach with Uber?

The Uber data breach began with a hacker purchasing stolen credentials belonging to an Uber employee from a dark web marketplace. An initial attempt to connect to Uber's network with these credentials failed because the account was protected with MFA.



Uber has a well-documented history of security breaches, with the most notable occurring in 2016 and 2022. In the 2016 incident, hackers stole the personal data of 57 million users and drivers, and Uber was later criticized for paying the hackers 100,000todeletethedataandstayquiet.InSeptember2022,ateenagerassociatedwiththe"Lapsus" hacking group gained access to Uber's internal systems, including their Slack and AWS environments, via a social engineering "MFA fatigue" attack. In early 2023, a third-party legal vendor for Uber also suffered a breach that exposed the data of 77,000 employees. As of 2026, Uber has significantly overhauled its security architecture, moving toward "Zero Trust" protocols and hardware-based security keys to prevent similar social engineering attacks. While there have been no major organization-wide breaches reported in the last 12 months, the company remains a high-profile target for cybercriminals due to the vast amount of user data it handles.

People Also Ask

Update: Uber Experiences Third Breach in 6 Months They also experienced a third party security breach that compromised their digital supply chain security. In addition to the September 2022 breach described below, it's clear that Uber as an enterprise company can do better for their customers and drivers.

MORE DETAILS

The Uber data breach began with a hacker purchasing stolen credentials belonging to an Uber employee from a dark web marketplace. An initial attempt to connect to Uber's network with these credentials failed because the account was protected with MFA.

MORE DETAILS

Uber's former chief security officer has avoided jail and been sentenced to three years' probation for covering up a cyber-attack from authorities. Joseph Sullivan was found guilty of paying hackers $100,000 (£79,000) after they gained access to 57 million records of Uber customers, including names and phone numbers.

MORE DETAILS

At the time, Uber was not just one of the world's fastest-growing companies - it was one of the most controversial, dogged by court cases, allegations of sexual harassment, and data breach scandals. Eventually shareholders had enough, and Travis Kalanick was forced out in 2017.

MORE DETAILS

In April of 2017, another secret was uncovered: Uber executives were using software installed in their drivers' cars to spy on rival rideshare companies. Since the drivers were independent contractors, they can drive for both Lyft and Uber.

MORE DETAILS

Exploited, underpaid and unrepresented, Uber drivers see stark disparity within, as the company's profits soar.

MORE DETAILS

They found private authentication information that Uber engineers had accidentally exposed publicly on GitHub, a site many engineers and companies use to store code and track projects. The attack began when hackers got their hands on Uber user data stored on an Amazon server.

MORE DETAILS

We identified any employee accounts that were compromised or potentially compromised and either blocked their access to Uber systems or required a password reset. We disabled many affected or potentially affected internal tools. We rotated keys (effectively resetting access) to many of our internal services.

MORE DETAILS

How much should you tip Uber drivers? Similar to tipping for other services, like getting a massage or going to the nail salon, the rule of thumb is to tip 20%, says Sokolosky. So if your ride costs $30—an average cost for a moderate trip in most cities—then you'll tip $6, for a total of $36.

MORE DETAILS

All on-demand food delivery courier services require you to pay with a credit card ahead of time. They all operate this way to keep the driver safe without making them have to handle large amounts of cash. Neither the dispatcher or anybody with Uber have any access to your credit card information.

MORE DETAILS

The leaked records cover 40 countries and span 2013 to 2017, the period in which Uber was aggressively expanding across the world. They reveal how the company broke the law, duped police and regulators, exploited violence against drivers and secretly lobbied governments across the world.

MORE DETAILS

We issue authorization holds as a way to better protect against fraud that may result from unauthorized card usage. You may see an authorization hold if you recently added a new payment method, or if you haven't used Uber in a while.

MORE DETAILS

Avoid these behaviors to ensure a smooth ride for both you and your driver.
  • You don't give a five-star rating, even though your ride was perfectly fine. ...
  • You don't tip. ...
  • You keep them waiting after they arrive to pick you up. ...
  • You cancel at the last minute. ...
  • You put your music on way too loud.


MORE DETAILS

Of course, some driver deactivations make sense. Uber and Lyft have both said it's their policy to fire drivers who are accused of assaulting or harassing drivers, and they both allude to cutting drivers with ratings below around a 4.5 or 4.6, which can weed out bad drivers.

MORE DETAILS

This is a story that spans three cities on two coasts and centers around one very memorable suspect, Arna Kimiai. Kimiai coughed on an Uber driver in March of 2021 and ripped off his mask. The incident was captured on video.

MORE DETAILS

Additionally, Uber says nine people were murdered during Uber rides and 58 people died in auto-related crashes. The numbers represent the first set of publicly available data regarding the safety of Uber's ride-hailing platform and how it compares to national US averages.

MORE DETAILS

Uber faces bans and restrictions in many countries, including China, Switzerland, Turkey, Denmark, Hungary, Thailand, Canada, Germany, Romania, Bulgaria, Italy, Hong Kong, and parts of Australia. The bans often stem from Uber's lack of adherence to local regulations and its unfair competition with taxi services.

MORE DETAILS