1. Forum
  2. tqwNet
  3. TQW_GENTECH

  • Uber has internal data stolen in yet another cyberattack

    From TechnologyDaily@1337:1/100 to All on Tue Apr 4 19:00:03 2023
    Uber has internal data stolen in yet another cyberattack

    Date:
    Tue, 04 Apr 2023 17:50:04 +0000

    Description:
    Uber drivers' data stolen in supply chain attack affecting a law firm.

    FULL STORY ======================================================================

    A recent supply chain attack has resulted in sensitive data belonging to Uber drivers being stolen once again.

    The Register picked up on a breach notification sent to affected drivers by the law firm Genova Burns which said that in late January 2023 it became
    aware of suspicious activity in its internal information systems.

    After bringing in outside forensic and data security specialists, the company determined that an unauthorized third party (no groups or individuals were named) accessed its systems between January 23 and 31, 2023.During that time, the threat actor stole data including Uber drivers names, Social Security Numbers, and in some cases, Tax Identification numbers. Securing the environment

    The way the notification was formulated suggests that this is not all of the data that was taken, but Genova Burns did not discuss it further.

    What it did discuss are its moves going forward, including the usual 12
    months of free identity monitoring services, this time through Kroll. It also said it secured the environment by changing all system passwords, and notifying the police.

    We will be taking additional steps to improve security and better help
    protect against similar incidents in the future, Genova Burns added, without detailing which additional steps those are. Read more

    Uber confesses it covered up a huge data breach


    Uber confirms it was hit by major cyberattack



    Here are the best endpoint protection services at the moment

    When asked by the publication to comment, Uber sent an email statement,
    saying the Genova Burns data was related to certain drivers who had completed trips in New Jersey. The company also reminded that the law firm found no evidence of the data being used in the wild, or evidence of such an attempt.

    Genova Burns said it held the data due to its legal representation of Uber Technologies.

    Uber has suffered its fair share of cybersecurity incidents, including the 2016 data theft fiasco, the 2022 Lapsus$ data theft, and the Teqtivity supply chain attack. Check out the best firewalls right now

    Via: The Register



    ======================================================================
    Link to news story: https://www.techradar.com/news/uber-has-internal-data-stolen-in-yet-another-cy berattack


    --- Mystic BBS v1.12 A47 (Linux/64)
    * Origin: tqwNet Technology News (1337:1/100)