ICO: UK Users Were Hit by Uber Breach

Share

The US, the United Kingdom and Italy are among a widening group of countries that are up in arms and vowing to probe Uber's cover-up of a massive hack attack that affected the personal data of over 57 million passengers and drivers across the globe.

Reports claimed the firm had paid hackers $100,000 for them to delete personal data on tens of millions of users, which they had accessed on Amazon Web Services via log-ins apparently found in a private Uber GitHub account.

The FTC has now put out a statement regarding the Uber data breach which the company concealed for the best part of a year before finally disclosing it, under new CEO Dara Khosrowshahi, on Tuesday by passing details to Bloomberg. NY attorney general Eric Schneiderman has launched an investigation into the incident.

Still, his presence at Uber's helm might be what helps the embattled company skate by its latest PR fiasco.

The stolen information included names, email addresses and mobile phone numbers of Uber users around the world, and the names and licence numbers of 600 000 U.S. drivers, Khosrowshahi said.

Normally, in a situation like this, Uber would notify the public and law enforcement, however, they chose a different course.

"While I can't erase the past, I can commit on behalf of every Uber employee that we will learn from our mistakes", Khosrowshahi wrote.

Bengaluru: Cricketer Zaheer Khan and Sagarika tie the knot
Zaheer Khan's designer shared the picture after the two of them got married and the couple looks breathtaking. She shared a picture of Sagarika decked in jewellery of all sorts - clearly confused which one to pick.

By contrast, hackers who breached security at Home Depot and Target accessed only names, addresses and credit card data.

On Tuesday, Uber CEO Dara Khosrowashahi revealed in a blog post what the ride-hailing company was hiding from the public since October 2016, i.e., for nearly a year.

The revelations come after it emerged that Uber had hushed up a mass data breach that potentially saw British customers' personal details fall into the hands of cyber criminals. We are changing the way we do business, putting integrity at the core of every decision we make and working hard to earn the trust of our customers. What was the more astounding aspect of this particular incident is the fact it has taken Uber over a year to reveal the security breach - with the attack taking place in October 2016. Uber says the response to the hack was handled by its chief security officer, Joe Sullivan, a former federal prosecutor whom Kalanick lured away from Facebook in 2015.

Clark didn't immediately respond to a request for comment sent through his LinkedIn profile.

NY law requires that companies notify the Attorney General and consumers if data is stolen. Deputy Commissioner of the UK Information Commissioner's, James Dipple-Johnstone made a statement saying that the consistent efforts made by Uber to hide the breach would make Uber pay a huge amount fine.

The U.K.'s Information Commissioner's Office (ICO) told CNBC on Wednesday that Uber could face an investigation and even potential fines up to £500,000 ($661,900).

Uber's cover up means that millions of user data - names, mobile phones, and e-mails - have been leaked.

Share