Meanwhile. the company sacked its chief security officer and another official for keeping the breach secret for so much time.
In the attack that occurred Oct. 26, 2016, hackers were able to get their hands on phone numbers, home addresses, and names of 50 million customers across the world. The driver’s license numbers and personal data on 7 million Uber drivers were also compromised. According to initial numbers, 600,000 driver’s license numbers were stolen.
Uber assured customers and drivers that their Social Security Numbers, location data, and credit card data were not exposed.
Uber Gave Hackers Hush Money
When the scandal broke out, Uber was at the negotiation table with U.S. regulators following privacy violation allegations. The company acknowledged that it should have immediately reported the data breach to authorities and affected drivers.
Instead, the taxi-app firm decided to sweep the whole thing under the rug by paying cyber attackers $100,000 to remain silent and discard the data. Uber is confident the stolen info was never accessed but refused to say who the hackers were. According to Bloomberg, there were “two individuals”.
Uber’s freshly-minted CEO Dara Khosrowshahi apologized for the mishap.
None of this should have happened, and I will not make excuses for it,
Khosrowshahi told reporters.
He pledged to revamp the way the company is doing business.
Uber disclosed the breach Tuesday. On the same day, New York Attorney General Eric Schneiderman started a probe into the attack. A disgruntled customer filed a class-action lawsuit against the company citing negligence.
The company’s founder Travis Kalanick, who recently stepped down from the CEO position in the wake of another scandal, found out the data had been compromised in November 2016.
Image Source: Flickr