Uber confirmed on Friday that it was investigating a “cyber security incident”, and while this was happening it took several of its internal communications and engineering systems offline.
The company also said it has contacted law enforcement about the hack.
The hack is understood to have included Uber’s production systems, Slack management interface, endpoint detection and response portal, and cloud services including the company’s source code and customer data.
Uber employees received a message from the hacker following the breach: “I hereby declare that I am a hacker and Uber has suffered a data breach.
of New York Times He interviewed the man who claimed responsibility for the abduction, who said he was only 18 years old.
The hacker said they gained access to the systems after sending a text message to an Uber employee claiming to be a corporate information technician.
They said that employee was eventually forced to hand over the password that was used to hack into Uber’s system.
He added that he later spammed the employee with push confirmations for over an hour, then contacted him on WhatsApp claiming to be from Uber IT.
They told the employee that if he wanted the messages to stop, he would have to accept the request. In doing so, the person added the hacker’s tool and allowed them to gain access.
The apparent hacker told him. New York Times Uber was hacked because the company had “weak security.”
It is reported that Uber drivers should be paid more.
Yuga Labs security engineer Sam Currie said he corresponded with the hacker and now has “pretty much full access to Uber.”
“It seems like a general consensus,” Curry said New York Times.
Acronis CISO Kevin Reed says the Uber breach is significant.
“Once inside the internal network, the attackers obtained high-privileged credentials on a network file share and used them to access everything, including production systems, corp EDR console, Uber slack management interface. This looks bad,” Reed posted on LinkedIn.
“Worse, there’s a high chance that your data will be accessed by multiple people in Uber. Say, if they know your email, they can know where you live.
Uber released an update about the breach over the weekend.
“While our investigation and response efforts are ongoing, here’s an additional update on yesterday’s incident: We have no evidence that the incident resulted in access to sensitive user data (such as travel history). All our services are… working; “The internal software tools we took down yesterday as a precaution will be back online this morning,” Uber said in a statement.
Uber is a subscriber to HackerOne, a bug bounty platform that pays hackers to identify bugs in platforms and networks.
Chris Evans, HackerOne’s chief hacking officer, told the BBC: “We have been in close contact with Uber’s security team, locked down the data and will continue to assist with the investigation.
This isn’t the first time Uber’s cyber security has been breached.
In the year In 2016, hackers stole the names, email addresses and phone numbers of 50 million Uber users worldwide, along with the driver’s license numbers of 7 million drivers in the United States. This includes the personal data of 1.2 million Australians.
At the time, Uber paid the hackers a ransom to cover up the breach, which remained undisclosed for another year.
The company did not publicly own up to the data breach until July of this year, and Uber agreed to pay $212 million in civil litigation related to the incident.
As part of the settlement, Uber said its employees “failed to report the November 2016 data breach.”