Uber kept a cyber attack it received classified as secret. It resulted in personal data of 57 million customers and drivers worldwide intercepted. In October 2016, hackers infiltrated the Uber platform. Before discovered, the company decided to not go public with the issue but instead attempted to cover it up
As it turns out, he wasn’t hinky about the incident and paid $100,000 to the hackers to delete all evidence of it. Bloomberg revealed this information.
According to Uber, the perpetrators of the cyber attack obtained sensitive personal data, such as credit card details, banking information and license plates. This resulted in users incurring high losses. The company also warns of malicious apps created to illegally access users’ data.
On Tuesday evening, Uber issued a lengthy press release admitting both the attack and the cover-up. “None of this should have happened, and I will not try to justify any of it,” CEO Dara Kosrowshahi said as well as other things that are hard to remember in written form.
Leo reassured the customers that the company has taken all necessary measures to prevent such cyber attacks. He also criticized concerned authorities for not informing them in advance.
Some very difficult decisions will be made. However, the case has been solved and justice was served.
The British personal data protection authority, the ICO, has expressed “deep concern” over Uber’s cover-up of the cyber attack.
“Hiding breaches by regulators and citizens can lead to higher fines for companies,” said James Dipple-Johnstone., The Deputy Commissioner General of the Information and Confidentiality Commissariat Data protection professionals have been warning companies to fully disclose breaches since they can sometimes result in high fines from British authorities.
“Deliberate concealment of breaches by regulators and citizens can lead to higher fines imposed on companies.” Lack of transparency leads to mistrust, which is bad for business” James Dipple-Johnstone, the deputy commissioner of the Information Commissioner’s Office, said in a recent speech. “The O is taking tough enforcement action to protect the public interest.”
The maximum penalty is $662,350. As per current UK law, organizations are responsible to notify their users or regulators of a data breach that might have occurred.
You can find another article about Uber here.
Author: PC-GR
The World of Technology
