Massive Breach at Uber covered up

Uber suffered a massive data breach in October 2016 and paid hackers $100,000 to keep quiet about it and delete the data. The breach resulted in the loss of sensitive personal information on nearly 50 million Uber users and 7 million Uber drivers. 

According to the current CEO Dara Khosrowshahi, the personal data included drivers licenses of nearly 600,000 Uber drivers as well as names, emails and cell phone numbers of users and drivers worldwide.

Uber also said that no Social Security numbers, credit card information or trip location details were stolen, Bloomberg reports.

How did the hack occur? According to Bloomberg, two attackers accessed an unsecured private GitHub repository used by Uber software engineers and found Amazon Web Services (AWS) login credentials used to access the archive of sensitive Uber user and driver data. 

Leave a Reply