Connect with us

News

Uber Blames Lapsus$ Hacking Collective For Data Breach

The hack targeted a Slack channel using a password purchased from the dark web, though the company claims no client data was compromised.

Published

on

uber blames lapsus$ hacking collective for data breach

Lapsus$ is a collective of hackers famous for ransomware attacks and data theft from huge companies such as Microsoft, Vodafone and Nvidia. Now, the group has successfully targeted ride-sharing giant Uber.

Uber’s systems were breached sometime last week, with employees discovering the hack on Thursday, 15th September. The infiltrator announced their actions on the company’s internal Slack account with a message that read: “I announce I am a hacker and Uber has suffered a data breach.”

Uber claims the hacker is associated with the Lapsus$ group. If that’s true, it means they could also be responsible for a massive data breach of Rockstar Games and its upcoming Grand Theft Auto VI (GTA 6) release, as the attacker announced that they were, in fact, the same person.

As far as Uber is concerned, no customer data was compromised during the hack, with the breach targeting invoice management tools and content from Slack channels.

In a new update about the fiasco, Uber believes the attack happened after the hacker purchased a corporate password on the dark web from a personal device that was infected with malware. Even though 2-factor authentication was activated, the contractor inexplicably allowed a login approval request, which granted entry to the account.

Since the data breach, the company has forced all users to change their login credentials and is adamant that any public-facing financial data or personal information remains secure.

Also Read: DDoS Attacks Are A Growing Threat In Gaming

“First and foremost, we’ve not seen that the attacker accessed the production (i.e. public-facing) systems that power our apps; any user accounts; or the databases we use to store sensitive user information, like credit card numbers, user bank account info, or trip history. We also encrypt credit card information and personal health data, offering a further layer of protection,” says Uber in an official statement.

To add to the embarrassment, Uber admits that the hacker accessed the company’s dashboard portal at HackerOne, where researchers report security bugs and vulnerabilities. In addition to law enforcement, Uber is now working alongside leading digital forensics teams to get to the bottom of the breach.

Advertisement

📢 Get Exclusive Monthly Articles, Updates & Tech Tips Right In Your Inbox!

JOIN 17K+ SUBSCRIBERS

Click to comment

Leave a Reply

Your email address will not be published. Required fields are marked *

News

PowerSchool Launches Arab Version Of Its EdTech Platform

The cloud-based solution is now available to Middle Eastern users, helping schools with administrative, communication, and classroom workflows.

Published

on

powerschool launches arab version of its edtech platform

PowerSchool, a leading cloud-based education software provider, today announced the launch of newly translated and localized solutions for the UAE and wider Gulf Coast and Middle East region.

Native-Arabic speaking educators will now be able to accomplish critical administrative, communication and classroom workflows using newly-updated Arabic translations, as well as access a right-to-left oriented interface, Hijri calendar overlay, and more.

PowerSchool’s platform is able to log student records and create reports in their native language, while teachers can now create enhanced, personalized lessons for their students and digital forms for parents.

powerschool edtech arabic interface

Finally, PowerSchool’s multi-language AI-powered assistant is also in development, and the company plans to launch the tool in the Middle East in the near future.

“With the UAE and other GCC countries prioritizing digital transformation in education, we are pleased to announce the availability of our educational and operational products in Arabic,” revealed Stewart Monk, Senior Vice President & General Manager, International at PowerSchool. “This also aligns with our commitment to provide mission-critical support to education leaders to provide personalized learning for students globally”.

Also Read: Top Free AI Chatbots Available In The Middle East

Along with the launch of a new Dubai office in 2023, PowerSchool seems highly invested in localized Arabic products. The latest announcement from the company strongly signals its commitment to the Middle East and GCC, and comes after the publication of its 2024 Education Focus Report, which takes a deep dive into the region’s education trends and developments.

“PowerSchool’s commitment to providing Arabic localization across its products reflects an understanding of their diverse user base and their commitment to inclusivity,” explained Mohammed Essam, PowerSchool Lead at ESOL Education. “This investment can lead to closer collaboration with educational institutions in the Middle East, fostering innovation and progress in the education sector. Overall, this is a promising direction that could benefit both PowerSchool and the educational community in the region”.

Continue Reading

#Trending