Taxi giant Uber suffered a major cyberattack in which malicious actors gained access to numerous computer systems, applications, terminals (opens in a new tab), and sensitive company data.
The attack, which has since been confirmed by Uber, appears to be the work of a threat actor who managed to steal the login credentials of a company employee.
The New York Times, which broke the news, said it spoke with the suspected hacker, who claimed to have breached Uber after carrying out a social engineering attack on an employee and stealing passwords.
Steal vulnerability reports
"We are currently responding to a cybersecurity incident. We are in contact with law enforcement and will post additional updates here as they become available," Uber confirmed via its Twitter support account (opens in a new tab). .
Whether viruses or malware were used is unknown, but using the stolen credentials, the attackers were able to access a trove of sensitive data, including internal systems, an email panel, a Slack server, security software, Windows domain, Amazon Web Services Console. , VMware ESXi virtual machines, and Google Workspace email admin panel.
While all of this data is valuable, the attackers may have hit the jackpot with vulnerability reports.
A source told BleepingComputer that the threat actor "downloaded all vulnerability reports" before losing access to Uber's bug bounty program. In other words, the hackers got all the information about bugs and glitches that Uber could have/fix right now.
Uber runs a bug bounty program through HackerOne, which allows security researchers to share their findings about bugs and vulnerabilities in Uber software, privately, and get paid for it. Since then, this program has been disabled by HackerOne, but it may be a bit late.
This is not the first time that Uber has faced a major data incident. In early 2022, the company admitted to covering up a major data breach that took place in 2016. This data breach caused user data to go online and some executives tried to cover it all up.
Uber's admissions came as part of a settlement that helped him avoid criminal charges from the US Department of Justice.
Via: BleepingComputer (Opens in a new tab)