{"id":1098,"date":"2017-11-27T15:23:47","date_gmt":"2017-11-27T19:23:47","guid":{"rendered":"https:\/\/solutionsreview.com\/security-information-event-management\/?p=1098"},"modified":"2017-11-27T15:23:47","modified_gmt":"2017-11-27T19:23:47","slug":"uber-reveals-security-breach-2016-57-million-affected","status":"publish","type":"post","link":"https:\/\/solutionsreview.com\/security-information-event-management\/uber-reveals-security-breach-2016-57-million-affected\/","title":{"rendered":"Uber Paid Off Hackers to Cover Up 2016 Breach that Affected 57 Million"},"content":{"rendered":"<p style=\"text-align: justify\"><span style=\"font-weight: 400\"><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter size-full wp-image-1100\" src=\"https:\/\/solutionsreview.com\/security-information-event-management\/files\/2017\/11\/uber-hack-car-crash.jpg\" alt=\"\" width=\"800\" height=\"400\" srcset=\"https:\/\/solutionsreview.com\/security-information-event-management\/files\/2017\/11\/uber-hack-car-crash.jpg 800w, https:\/\/solutionsreview.com\/security-information-event-management\/files\/2017\/11\/uber-hack-car-crash-300x150.jpg 300w, https:\/\/solutionsreview.com\/security-information-event-management\/files\/2017\/11\/uber-hack-car-crash-768x384.jpg 768w, https:\/\/solutionsreview.com\/security-information-event-management\/files\/2017\/11\/uber-hack-car-crash-540x270.jpg 540w, https:\/\/solutionsreview.com\/security-information-event-management\/files\/2017\/11\/uber-hack-car-crash-162x81.jpg 162w, https:\/\/solutionsreview.com\/security-information-event-management\/files\/2017\/11\/uber-hack-car-crash-360x180.jpg 360w\" sizes=\"(max-width: 800px) 100vw, 800px\" \/>In <\/span><a href=\"https:\/\/www.uber.com\/newsroom\/2016-data-incident\/\"><span style=\"font-weight: 400\">a statement<\/span><\/a><span style=\"font-weight: 400\"> released Tuesday, Uber CEO Dara Khosrowshahi admitted that the ride-hailing company suffered a major cybersecurity breach in 2016, with 57 million passengers&#8217; information\u2014including names, email addresses, and phone numbers\u2014illegally accessed. In addition, the unidentified hackers downloaded 600,000 US driver records including license numbers from a third party, cloud-based service Uber utilizes. <\/span><span style=\"font-weight: 400\">Uber assured customers that no financial or Social Security information was downloaded in the hack. \u00a0<\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">&#8220;<\/span><span style=\"font-weight: 400\">At the time of the incident, we took immediate steps to secure the data and shut down further unauthorized access by the individuals [responsible],&#8221; said Khosrowshahi. &#8220;We subsequently identified the individuals and obtained assurances that the downloaded data had been destroyed. We also implemented security measures to restrict access to and strengthen controls on our cloud-based storage accounts.&#8221; \u00a0<\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">As of this time it is unclear what, if any, monitoring systems or procedures Uber used to secure this data prior to or in the aftermath of the attack. The hackers reportedly demanded $100,000 from Uber in exchange for their silence and for the destruction of all the illegal copies of customers&#8217; information. Uber&#8217;s then Chief of Information Security Joe Sullivan allegedly complied with their demands and did not inform state or federal authorities of the breach, violating California\u2014Uber&#8217;s headquarters location&#8211;state law. Sullivan has since been removed from his position. \u00a0<\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">Sullivan said in a statement: &#8220;While I can\u2019t erase the past, I can commit on behalf of every Uber employee that we will learn from our mistakes. We are changing the way we do business, putting integrity at the core of every decision we make and working hard to earn the trust of our customers.&#8221; <\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">It is unclear how the hack may affect Uber&#8217;s business or its <\/span><a href=\"https:\/\/www.nytimes.com\/2017\/06\/13\/opinion\/travis-kalanick-uber-bad-behavior.html\"><span style=\"font-weight: 400\">already tarnished<\/span><\/a><span style=\"font-weight: 400\"> public perception. After giving his statement, it was revealed that Khosrowshahi knew of the hack two months before alerting the public. Although the breach occurred under Khosrowshahi&#8217;s predecessor Travis Kalanick, Kalanick is still on Uber&#8217;s Board of Directors. \u00a0<\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">Investigations by the office of the New York and the Massachusetts Attorney Generals are ongoing. \u00a0<\/span><\/p>\n<p style=\"text-align: justify\"><span style=\"font-weight: 400\">Thanks to <\/span><a href=\"https:\/\/www.engadget.com\/2017\/11\/25\/uber-ceo-knew-about-hack-months-in-advance\/\"><span style=\"font-weight: 400\">Engadget<\/span><\/a><span style=\"font-weight: 400\">, <\/span><a href=\"https:\/\/www.theregister.co.uk\/2017\/11\/22\/uber_2016_data_breach\/\"><span style=\"font-weight: 400\">The Register<\/span><\/a><span style=\"font-weight: 400\">, and <\/span><a href=\"https:\/\/money.cnn.com\/2017\/11\/22\/technology\/uber-hack-consequences-cover-up\/index.html\"><span style=\"font-weight: 400\">CNN<\/span><\/a><span style=\"font-weight: 400\"> for sources. \u00a0<\/span><\/p>\n","protected":false},"excerpt":{"rendered":"<p>In a statement released Tuesday, Uber CEO Dara Khosrowshahi admitted that the ride-hailing company suffered a major cybersecurity breach in 2016, with 57 million passengers&#8217; information\u2014including names, email addresses, and phone numbers\u2014illegally accessed. In addition, the unidentified hackers downloaded 600,000 US driver records including license numbers from a third party, cloud-based service Uber utilizes. Uber [&hellip;]<\/p>\n","protected":false},"author":41,"featured_media":1100,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"inline_featured_image":false,"footnotes":""},"categories":[3],"tags":[95,338,437,112,465],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v23.5 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>Uber Paid Off Hackers to Cover Up 2016 Breach that Affected 57 Million<\/title>\n<meta name=\"description\" content=\"Uber CEO Khosrowshahi admitted to a major cybersecurity breach in 2016, with 57 million passengers&#039; information illegally accessed.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/solutionsreview.com\/security-information-event-management\/uber-reveals-security-breach-2016-57-million-affected\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Uber Paid Off Hackers to Cover Up 2016 Breach that Affected 57 Million\" \/>\n<meta property=\"og:description\" content=\"Uber CEO Khosrowshahi admitted to a major cybersecurity breach in 2016, with 57 million passengers&#039; information illegally accessed.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/solutionsreview.com\/security-information-event-management\/uber-reveals-security-breach-2016-57-million-affected\/\" \/>\n<meta property=\"og:site_name\" content=\"SIEM Tools &amp; Security Event Management | Solutions Review\" \/>\n<meta property=\"article:published_time\" content=\"2017-11-27T19:23:47+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/solutionsreview.com\/security-information-event-management\/files\/2017\/11\/uber-hack-car-crash.jpg\" \/>\n\t<meta property=\"og:image:width\" content=\"800\" \/>\n\t<meta property=\"og:image:height\" content=\"400\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/jpeg\" \/>\n<meta name=\"author\" content=\"Ben Canner\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Ben Canner\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"2 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"https:\/\/solutionsreview.com\/security-information-event-management\/uber-reveals-security-breach-2016-57-million-affected\/\",\"url\":\"https:\/\/solutionsreview.com\/security-information-event-management\/uber-reveals-security-breach-2016-57-million-affected\/\",\"name\":\"Uber Paid Off Hackers to Cover Up 2016 Breach that Affected 57 Million\",\"isPartOf\":{\"@id\":\"https:\/\/solutionsreview.com\/security-information-event-management\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/solutionsreview.com\/security-information-event-management\/uber-reveals-security-breach-2016-57-million-affected\/#primaryimage\"},\"image\":{\"@id\":\"https:\/\/solutionsreview.com\/security-information-event-management\/uber-reveals-security-breach-2016-57-million-affected\/#primaryimage\"},\"thumbnailUrl\":\"https:\/\/solutionsreview.com\/security-information-event-management\/files\/2017\/11\/uber-hack-car-crash.jpg\",\"datePublished\":\"2017-11-27T19:23:47+00:00\",\"dateModified\":\"2017-11-27T19:23:47+00:00\",\"author\":{\"@id\":\"https:\/\/solutionsreview.com\/security-information-event-management\/#\/schema\/person\/357f925262827fcf840b4341920a1541\"},\"description\":\"Uber CEO Khosrowshahi admitted to a major cybersecurity breach in 2016, with 57 million passengers' information illegally accessed.\",\"breadcrumb\":{\"@id\":\"https:\/\/solutionsreview.com\/security-information-event-management\/uber-reveals-security-breach-2016-57-million-affected\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/solutionsreview.com\/security-information-event-management\/uber-reveals-security-breach-2016-57-million-affected\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/solutionsreview.com\/security-information-event-management\/uber-reveals-security-breach-2016-57-million-affected\/#primaryimage\",\"url\":\"https:\/\/solutionsreview.com\/security-information-event-management\/files\/2017\/11\/uber-hack-car-crash.jpg\",\"contentUrl\":\"https:\/\/solutionsreview.com\/security-information-event-management\/files\/2017\/11\/uber-hack-car-crash.jpg\",\"width\":800,\"height\":400,\"caption\":\"What the Uber Settlement Can Teach Us About Cybersecurity Coverups\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/solutionsreview.com\/security-information-event-management\/uber-reveals-security-breach-2016-57-million-affected\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/solutionsreview.com\/security-information-event-management\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Uber Paid Off Hackers to Cover Up 2016 Breach that Affected 57 Million\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/solutionsreview.com\/security-information-event-management\/#website\",\"url\":\"https:\/\/solutionsreview.com\/security-information-event-management\/\",\"name\":\"SIEM Tools &amp; Security Event Management | Solutions Review\",\"description\":\"Evaluating Enterprise SIEM Systems, Log Management Analytics &amp; SOAR Platforms.\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/solutionsreview.com\/security-information-event-management\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Person\",\"@id\":\"https:\/\/solutionsreview.com\/security-information-event-management\/#\/schema\/person\/357f925262827fcf840b4341920a1541\",\"name\":\"Ben Canner\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/solutionsreview.com\/security-information-event-management\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/63f68345052a446ce0cc9c802dd3f373?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/63f68345052a446ce0cc9c802dd3f373?s=96&d=mm&r=g\",\"caption\":\"Ben Canner\"},\"description\":\"Ben Canner is an enterprise technology writer and analyst covering Identity Management, SIEM, Endpoint Protection, and Cybersecurity writ large. He holds a Bachelor of Arts Degree in English from Clark University in Worcester, MA. He previously worked as a corporate blogger and ghost writer. You can reach him via Twitter and LinkedIn.\",\"url\":\"https:\/\/solutionsreview.com\/security-information-event-management\/author\/bcanner\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Uber Paid Off Hackers to Cover Up 2016 Breach that Affected 57 Million","description":"Uber CEO Khosrowshahi admitted to a major cybersecurity breach in 2016, with 57 million passengers' information illegally accessed.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/solutionsreview.com\/security-information-event-management\/uber-reveals-security-breach-2016-57-million-affected\/","og_locale":"en_US","og_type":"article","og_title":"Uber Paid Off Hackers to Cover Up 2016 Breach that Affected 57 Million","og_description":"Uber CEO Khosrowshahi admitted to a major cybersecurity breach in 2016, with 57 million passengers' information illegally accessed.","og_url":"https:\/\/solutionsreview.com\/security-information-event-management\/uber-reveals-security-breach-2016-57-million-affected\/","og_site_name":"SIEM Tools &amp; Security Event Management | Solutions Review","article_published_time":"2017-11-27T19:23:47+00:00","og_image":[{"width":800,"height":400,"url":"https:\/\/solutionsreview.com\/security-information-event-management\/files\/2017\/11\/uber-hack-car-crash.jpg","type":"image\/jpeg"}],"author":"Ben Canner","twitter_misc":{"Written by":"Ben Canner","Est. reading time":"2 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"https:\/\/solutionsreview.com\/security-information-event-management\/uber-reveals-security-breach-2016-57-million-affected\/","url":"https:\/\/solutionsreview.com\/security-information-event-management\/uber-reveals-security-breach-2016-57-million-affected\/","name":"Uber Paid Off Hackers to Cover Up 2016 Breach that Affected 57 Million","isPartOf":{"@id":"https:\/\/solutionsreview.com\/security-information-event-management\/#website"},"primaryImageOfPage":{"@id":"https:\/\/solutionsreview.com\/security-information-event-management\/uber-reveals-security-breach-2016-57-million-affected\/#primaryimage"},"image":{"@id":"https:\/\/solutionsreview.com\/security-information-event-management\/uber-reveals-security-breach-2016-57-million-affected\/#primaryimage"},"thumbnailUrl":"https:\/\/solutionsreview.com\/security-information-event-management\/files\/2017\/11\/uber-hack-car-crash.jpg","datePublished":"2017-11-27T19:23:47+00:00","dateModified":"2017-11-27T19:23:47+00:00","author":{"@id":"https:\/\/solutionsreview.com\/security-information-event-management\/#\/schema\/person\/357f925262827fcf840b4341920a1541"},"description":"Uber CEO Khosrowshahi admitted to a major cybersecurity breach in 2016, with 57 million passengers' information illegally accessed.","breadcrumb":{"@id":"https:\/\/solutionsreview.com\/security-information-event-management\/uber-reveals-security-breach-2016-57-million-affected\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/solutionsreview.com\/security-information-event-management\/uber-reveals-security-breach-2016-57-million-affected\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/solutionsreview.com\/security-information-event-management\/uber-reveals-security-breach-2016-57-million-affected\/#primaryimage","url":"https:\/\/solutionsreview.com\/security-information-event-management\/files\/2017\/11\/uber-hack-car-crash.jpg","contentUrl":"https:\/\/solutionsreview.com\/security-information-event-management\/files\/2017\/11\/uber-hack-car-crash.jpg","width":800,"height":400,"caption":"What the Uber Settlement Can Teach Us About Cybersecurity Coverups"},{"@type":"BreadcrumbList","@id":"https:\/\/solutionsreview.com\/security-information-event-management\/uber-reveals-security-breach-2016-57-million-affected\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/solutionsreview.com\/security-information-event-management\/"},{"@type":"ListItem","position":2,"name":"Uber Paid Off Hackers to Cover Up 2016 Breach that Affected 57 Million"}]},{"@type":"WebSite","@id":"https:\/\/solutionsreview.com\/security-information-event-management\/#website","url":"https:\/\/solutionsreview.com\/security-information-event-management\/","name":"SIEM Tools &amp; Security Event Management | Solutions Review","description":"Evaluating Enterprise SIEM Systems, Log Management Analytics &amp; SOAR Platforms.","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/solutionsreview.com\/security-information-event-management\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Person","@id":"https:\/\/solutionsreview.com\/security-information-event-management\/#\/schema\/person\/357f925262827fcf840b4341920a1541","name":"Ben Canner","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/solutionsreview.com\/security-information-event-management\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/63f68345052a446ce0cc9c802dd3f373?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/63f68345052a446ce0cc9c802dd3f373?s=96&d=mm&r=g","caption":"Ben Canner"},"description":"Ben Canner is an enterprise technology writer and analyst covering Identity Management, SIEM, Endpoint Protection, and Cybersecurity writ large. He holds a Bachelor of Arts Degree in English from Clark University in Worcester, MA. He previously worked as a corporate blogger and ghost writer. You can reach him via Twitter and LinkedIn.","url":"https:\/\/solutionsreview.com\/security-information-event-management\/author\/bcanner\/"}]}},"_links":{"self":[{"href":"https:\/\/solutionsreview.com\/security-information-event-management\/wp-json\/wp\/v2\/posts\/1098"}],"collection":[{"href":"https:\/\/solutionsreview.com\/security-information-event-management\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/solutionsreview.com\/security-information-event-management\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/solutionsreview.com\/security-information-event-management\/wp-json\/wp\/v2\/users\/41"}],"replies":[{"embeddable":true,"href":"https:\/\/solutionsreview.com\/security-information-event-management\/wp-json\/wp\/v2\/comments?post=1098"}],"version-history":[{"count":0,"href":"https:\/\/solutionsreview.com\/security-information-event-management\/wp-json\/wp\/v2\/posts\/1098\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/solutionsreview.com\/security-information-event-management\/wp-json\/wp\/v2\/media\/1100"}],"wp:attachment":[{"href":"https:\/\/solutionsreview.com\/security-information-event-management\/wp-json\/wp\/v2\/media?parent=1098"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/solutionsreview.com\/security-information-event-management\/wp-json\/wp\/v2\/categories?post=1098"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/solutionsreview.com\/security-information-event-management\/wp-json\/wp\/v2\/tags?post=1098"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}