Uber Concealed Huge Data Breach
Hackers stole the personal data of 57 million customers and drivers from Uber. A massive data breach from the October 2016 attack included names, email addresses and phone numbers of 50 million Uber riders around the world.
Uber had a legal obligation to report the hack to regulators and to drivers whose affected. Instead, the ride-hailing company paid hackers $100,000 to delete the stolen data in order to keep the breach quiet. Uber said it believes the information was never used but declined to disclose the identities of the attackers.
Hackers stole the personal data of 7 million drivers, including some 600,000 U.S. driver’s license numbers were taken. No Social Security numbers, credit card information, trip location details or other data were taken, Uber said.
“None of this should have happened, and I will not make excuses for it,” Dara Khosrowshahi, who took over as chief executive officer in September, said in an emailed statement. “We are changing the way we do business.”