Connect with us

News

Uber Blames Lapsus$ Hacking Collective For Data Breach

The hack targeted a Slack channel using a password purchased from the dark web, though the company claims no client data was compromised.

Published

on

uber blames lapsus$ hacking collective for data breach

Lapsus$ is a collective of hackers famous for ransomware attacks and data theft from huge companies such as Microsoft, Vodafone and Nvidia. Now, the group has successfully targeted ride-sharing giant Uber.

Uber’s systems were breached sometime last week, with employees discovering the hack on Thursday, 15th September. The infiltrator announced their actions on the company’s internal Slack account with a message that read: “I announce I am a hacker and Uber has suffered a data breach.”

Uber claims the hacker is associated with the Lapsus$ group. If that’s true, it means they could also be responsible for a massive data breach of Rockstar Games and its upcoming Grand Theft Auto VI (GTA 6) release, as the attacker announced that they were, in fact, the same person.

As far as Uber is concerned, no customer data was compromised during the hack, with the breach targeting invoice management tools and content from Slack channels.

In a new update about the fiasco, Uber believes the attack happened after the hacker purchased a corporate password on the dark web from a personal device that was infected with malware. Even though 2-factor authentication was activated, the contractor inexplicably allowed a login approval request, which granted entry to the account.

Since the data breach, the company has forced all users to change their login credentials and is adamant that any public-facing financial data or personal information remains secure.

Also Read: DDoS Attacks Are A Growing Threat In Gaming

“First and foremost, we’ve not seen that the attacker accessed the production (i.e. public-facing) systems that power our apps; any user accounts; or the databases we use to store sensitive user information, like credit card numbers, user bank account info, or trip history. We also encrypt credit card information and personal health data, offering a further layer of protection,” says Uber in an official statement.

To add to the embarrassment, Uber admits that the hacker accessed the company’s dashboard portal at HackerOne, where researchers report security bugs and vulnerabilities. In addition to law enforcement, Uber is now working alongside leading digital forensics teams to get to the bottom of the breach.

Advertisement

📢 Get Exclusive Monthly Articles, Updates & Tech Tips Right In Your Inbox!

JOIN 16K+ SUBSCRIBERS

Click to comment

Leave a Reply

Your email address will not be published.

News

UAE Comes Out Strongly In Guinness World Records 2023

Guinness, the renowned cataloger of record-breaking events, has released its latest annual, after sifting through 40,000 applications — and the Arab world is heavily featured.

Published

on

uae comes out strongly in guinness world records 2023
Guinness

Guinness World Records, the authority on record-breaking global achievements, has just announced its latest release, “Guinness World Records 2023 (GWR2023),” which will be available online and in physical stores across the Arab region from today.

As usual, GWR 2023 features all of the latest achievements from around the world (and space!), with special features and updated graphics to bring the stories to life.

So why the interest in the latest Guinness installment? Well, it turns out the Arab Region is strongly represented in the book, with more than 50 records featured in the new edition, which is no mean feat considering the volume of competition.

“We’ve sifted through nearly 40,000 record applications over the past year to bring you Guinness World Records 2023. People from all walks of life continue to be fascinated by extremes, and we’ve received claims from across the planet – indeed, even from space! This is why I’ve said the new edition is out of this world,” says Craig Glenday, Guinness Editor in Chief.

Of interest to readers of this platform, Saudi Arabia and the United Arab Emirates both get to flex their record-breaking muscles.

deepest swimming pool in the world

World’s Deepest Swimming Pool

Saudi Arabia claims the title of “Largest LED Structure and Suspended Ornament” courtesy of the Noor Riyadh Festival, as well as other weird and wonderful titles, including the “Largest Lego Formula 1 Car”, as well as perhaps more prestigious honors, such as “Largest Mirrored Building”, “Largest Clock Face”, “Tallest Lighthouse” and the “Largest Geodesic Dome”.

largest mirrored building

World’s Largest Mirrored Building

Also Read: Fan Spends 7 Years To Create Super Mario Bros 5

Not to be outdone, the UAE has claimed several humanitarian record-breaking titles, including the “Longest Video Livestream” (by The Mohammed Bin Rashid Al Maktoum Global Initiatives and pan Arab influencer Hassan Suleiman), the “Largest Donation for Medical Treatment”, and the “Most Awareness Ribbons Made in One Hour”.

longest video livestream

World’s Longest Video Livestream

On the tech front, the UAE also claims several prestigious firsts, including “First 3D-Printed Laboratory”, while the world-renowned Burj Khalifa hangs on to its title of “World’s Tallest Building”.

Continue Reading

#Trending