Some hackers stole personal and private data of 57 Million costumer, drivers and Uber partners from Uber Technologies Inc, a severe infringement that the UBER is hiding for more than a year. This week, the ride-hailing firm fired it’s two officers, one is a chief security officer and one of his deputies for keeping those hack things under the wrap, which is involved a $100,000 remission to the attackers.
Settled data from the October 2016 attack includes names, email addresses and phone numbers of more than 50 million UBER customers around the world; the company states this to a US news blog named Bloomberg on Tuesday. Also the personal information of drivers like driver’s license numbers. No Social Security numbers, credit card information, trip location details or other data were accessed. More than 600,000 U.S. drivers also victimised.
Meanwhile, Uber was clinching with U.S. regulators investigating separate affirm of privacy violations. Uber paid the hackers to delete the data of drivers and customers and keep transgression quite. Uber said in public that stolen data was never used and never disclosed. But Uber denied sharing hackers information and identity.
Dara Khosrowshahi, who appointed as the CEO of UBER in September said “None of this should have happened, and I will not make excuses for it,” also he added in an email statement that “We are changing the way we do business.”
After UBER disclosed about the hack and the remission paid, NY Attorney General Eric Schneiderman launched an inquiry into the hack.
UBER’s co-founder and the former CEO of Uber, Travis Kalanick came to know about the hacks in November 2016, after a month of the incident.
Here is how hack went down!
Two sharp hackers accessed a private GitHub coding site that used by the Uber software engineers and then used login credentials they acquire there to data stored on an AWS (Amazon Web Server) account that computing company’s task. From that AWS hackers were able to find an archive copy of data, which consist of Drivers, Customers data. Later, they mailed UBER for remission money.
Khosrowshahi said in his emailed statement: “While I can’t erase the past, I can commit on behalf of every Uber employee that we will learn from our mistakes.”
Uber also hired Matt Olsen, a former general counsel at the National Security Agency and director of the National Counterterrorism Center, as a security advisor. He will help restructure its security teams, also Uber hired a security firm owned by FireEye Inc., to investigate the hack.