Hackers Stole Data From 57 Million Uber Drivers and Customers, Uber Paid $100K to Hide Attack
- Thread starter MacRumors
- Start date
- Sort by reaction score
So you would be happy to have some hacker know where you live and maybe rob you or attack you then? Or you are happy for a single woman to get attacked and raped then?
Kabeyun
macrumors 68040
Don’t forget about 600,000 drivers license numbers. And who knows what else? Your source is Uber. You think that Uber, a company with a history of bad behavior, a company that paid hackers a ransom and then kept it quiet for a year (in violation of state law, btw) was open and honest about what kind of data was stolen?
x-evil-x
macrumors 603
Good way to stereotype drivers. Why are MOST of their drivers(me being one) shady? Do you have any idea what drivers go through dealing with a lot of passengers?
kdarling
macrumors P6
After doing some more reading, I now think it was a bad assumption on my part to think that they ever even planned to sell the info.
Snce Uber knew who the guys were, they might've been able to send authorities after them. But that would've likely made things go public.
That's why it sounds like the two hackers contacted Uber to tell about how they breached things, and probably mentioned it would be revealed in a symposium. Whereupon the execs responsible for security offered to pay them to keep it quiet and delete the evidence.
In short, I now don't think there was any danger of the info being sold. I think this was instead an internal attempt to cover up lax security. Which is of course still bad, but was not a danger to us.
seeforyourself
macrumors 6502
That’s not the point. The point is that they hid it from us. They could of got ahold of passwords too. Some people are ignorant to keep the same account name for everything with the same password
How is that the same thing at all? No, I'm not going to post my info on a public forum, but I'm also not going to stomp my feet and whine about Uber because someone got my phone number and email address.
You must have been screaming from the rooftops about the Equifax breach, then.
[doublepost=1511366120][/doublepost]
You mean like that one time that an IP address used by Lyft's CTO was used to steal driver information from Uber?
https://www.reuters.com/article/us-...gation-involving-top-executives-idUSKCN0ZE0FP
69Mustang
macrumors 604
I fixed that for you.
Hey who knows, maybe these hackers used that same security hole to breach Uber.You completely misunderstood what you read in my quote btw. I asked for an example of when Uber was unfairly targeted by the media, which was the claim in the quote I replied to earlier. I wasn't asking about someone targeting Uber's security.
Was this comment supposed to make sense?
xaviserranoa
macrumors newbie
as a developer myself all I can think of is whose idea was to version the credentials? it's GIT 101 to never version credentials on a git repo.
deany
macrumors 68030
You seem to be sticking up for Uber.
Read this:
http://www.bbc.co.uk/news/technolog...0g7qt/uber&link_location=live-reporting-story
Ditto.
outskirtsofinfinity
macrumors 6502
I believe I saw it one of the screenshot images in Finisterre's PDF...
https://arstechnica.com/information...storage-in-public-view-and-exposed-customers/
http://www.digitalmunition.com/WhyIWalkedFrom3k.pdf
Mark Booth
macrumors 68000
I deleted the Uber app from my iPhone earlier in the year. They are a slime ball company and don't deserve to stay in business.
Mark
Mark
WristyManchego
macrumors member
Boy this is absolute ****ing ********, of course the data was on-sold.
My uber account was used for nefarious purposes twice earlier this year because of that data breach.
My uber account was used for nefarious purposes twice earlier this year because of that data breach.
This is a new CEO who just found out about what happened, and is trying to set things right.
The people who should be in trouble are the previous security and legal advisers.
Not defending Uber, cuz I don't care about them. Just trying to slow the usual mob mentality
Few stop to read what happened, they just want blood. Much easier than actually thinking.
For example, apparently Uber knew the identity of the two hackers who got the info. So perhaps there was never any plan to sell the customer info in the first place, but were paid simply to keep quiet that a breach had happened.
We don't have all the background.
Ah well they are now facing heavy fines, because those ex bosses didn’t bother to inform ANY of the authorities of the hack regardless of trying to pay them off to protect their pathetic image, which is highly illegal. They could face international fines depending on how far the breach reached, I think they are a scum of a company and would never trust or use them.
kdarling
macrumors P6
Yep, not a glowing image of a company, for sure.
However, they're useful around the northeast to get between towns and train stations, and around the city.
My older daughter uses them a lot when she comes to visit.