Uber informed SoftBank of data breach before regulators and the public

Nov 25, 2017, 02:08
Uber informed SoftBank of data breach before regulators and the public

The multibillion-dollar company revealed the information of 57 million customers and drivers had been compromised in the data theft, which it then tried to cover up by paying a $US100,000 ransom to the perpetrators in a move new chief executive Dara Khosrowshahi admitted "should not have happened".

Uber paid hackers $100,000 to keep secret the massive breach.

In a statement on Wednesday, Uber announced that they had previously discussed the data breach with SoftBank saying, "We informed SoftBank that we were investigating a data breach, consistent with our duty to disclose to a potential investor, even though our information at the time was preliminary and incomplete".

Uber's new chief executive, who is trying to fix the company's battered reputation, has known about the hack that lost 57 million passengers' and drivers' details for over two months. Similarly, Travis Kalanick, the former CEO and co-founder of Uber who stepped down in June, was reportedly informed about it in November 2016. We are changing the way we do business, putting integrity at the core of every decision we make and working hard to earn the trust of our customers.

We are working with the Information Commissioner's Office and the National Cyber Security Centre, and they are talking to the US Federal Trade Commission and others to get to the bottom of things.

"By virtue of its operations and processing of Filipino end user data, Uber is considered a Personal Information Controller and must comply with Philippine data privacy and protection laws", the National Privacy Commission said.

The multinational company has admitted to having paid USA $100,000 to the pirates for they destroy the stolen information.

Tougher data protection regulations are being brought into force next year by the European Union, which will see companies required to introduce improved procedures, with bigger fines for breaches that lead to customer information being accessed.

Ride-sharing app Uber has revealed that hackers gained access to the information of 57 million customers late previous year.

"Names, email addresses and phone numbers leave Uber's riders or drivers susceptible to phishing attacks from these criminals".

At the time of the incident, we took immediate steps to secure the data and shut down further unauthorized access by the individuals.

The spokesman said that Uber "did not notify individuals in the UK, the UK Government or UK regulators" at the time the hack was discovered in October previous year. "Once we have a sufficient assessment of the incident we will publish the details of the impact on United Kingdom citizens", NCSC said in a statement.

Liboro added that Uber came to the meeting represented by its Data Protection Officer, lawyer Yves Gonzalez, accompanied by an external counsel.

Uber claims to have paid $100,000 to secure 57 million accounts exposed in a breach previous year, but the UK's spy agency, GCHQ, suggests consumers don't place too much faith in Uber's claim.