Uber's data breach was relatively small when compared to the Yahoo hack

Uber's data breach was relatively small when compared to the Yahoo hack

Uber's secret $100,000 (£75,468) pay-off to hackers to cover up a massive breach of customer and driver data at the ride-hailing firm raises "huge concerns" about its data policies and ethics, Britain's data protection regulator said on Wednesday.

"We also implemented security measures to restrict access to and strengthen controls on our cloud-based storage accounts", said Khosrowshahi.

If you are one of the 40 million riders who use Uber every month, the company encourages you to keep an eye on your credit and any fraud alerts as well as monitoring your Uber account for unusual activity. Hackers also stole names and license numbers of around 600,000 US drivers.

"Uber CEO Dara Khosrowshahi's statement that there is no excuse for what happened and Uber will be putting integrity and trust at the core of every business decision is a welcome message", he said.

Uber is trying to salvage its reputation following a number of high-profile controversies, including using software called Greyball to evade regulators, a court battle over allegedly stolen secrets from Google's self-driving vehicle division, and a slew of complaints regarding sexual harassment and toxic company culture.

However, more than a fifth (21 percent) of respondents felt that such incidents probably happen all the time and so Uber's situation didn't bother them and over a quarter (27 percent) felt it was annoying but wouldn't stop them from using the service.

And the cyber-thieves made off with 600,000 U.S. driver records that included their license numbers.

First, I've heard numerous stories at infosec conferences this year about unnamed companies, including healthcare and financial services organizations, that were hit with ransomware and then paid the ransom without disclosing the incident to regulators or the public.

More news: Jude Law in Talks to Join Brie Larson in 'Captain Marvel'

Theresa May's official spokesman said: "These are obviously concerning reports and the National Cyber Security Centre is working closely with domestic and worldwide agencies, including the National Crime Agency and the Information Commissioner's Office, to investigate if and how this breach has affected people in the UK".

The developments have some of the hallmarks of the Equifax data breach, which the credit reporting firm said in September impacted 145 million Americans earlier this year.

Company officials admitted to the cover-up in a recent Bloomberg report. Yet whatever comes of that investigation, Pilgrim - whose office will oversee the new Notifiable Data Breach (NDB) scheme from February 2018 - called the breach "a timely reminder to Australian businesses and agencies of the reputational vale of good privacy practice, and the reputational risks that can follow mishandling of personal data".

Khosrowshahi said the company fired two individuals who led security response.

"They've stopped it, they took care it, I'm still gonna drive", said Uber driver Bobby Bennett.

Uber has set up a website for users who have been affected.

Grossman says the breach may not change consumer behavior, but it will be costly for the company. In addition to its legal troubles, Uber has faced criticism for sexual harassment issues, underpaying and deceiving drivers, questioning a rape victim, and surge pricing during times of crisis. "The cost of dealing with this - they're going to have lawsuits and legal fees", Grossman said.

Related Articles