ibusinesslines.com
ibusinesslines.com October 21, 2018


Uber paid 20-year-old man to keep data breach secret

07 December 2017, 05:54 | Kelvin Horton

Uber paid 20-year-old man to keep data breach secret

T002849Z_511325468_RC1EDDED17B0_RTRMADP_3_UBER-CYBER-PAYMENT.JPG

A Reuters report citing sources familiar with the matter claims that a 20 year-old from Florida was responsible for Uber's 2016 data breach.

HackerOne subsequently paid the person $100,000 in exchange for erasing the stole Uber data, the sources told Reuters.

Sources familiar with the hack told Reuters the payment was made through a program created to reward bug hunters who report flaws in a company's software.

The allegation will make life more hard for Uber CEO Dara Khosrowshahi, who had only became aware of the breach recently, as he had only joined the company in August. He stepped down as Uber CEO in June and has taken a vow of silence too.

In order to cover the attack up, Uber used its bug bounty service hosted by HackerOne.

Uber declined to pursue criminal charges after determining that the person didn't pose an additional threat and eventually paid the hacker after confirming their identity and making them sign a nondisclosure agreement, Reuters reported.


The most interesting part, which is hacker's description according to a source - "Living with his mom in a small home trying to help pay the bills". "Our recommendation is to never store access tokens, passwords, or other authentication or encryption keys in the code", that company said in a statement. The pilfered data included personal information such as names, email addresses and driver's license numbers, but not Social Security numbers and credit card information, the company said.

Moussouris added that the failure to report the breach was a grievous error: "The creation of a bug bounty program doesn't allow Uber, their bounty service provider or any other company the ability to decide that breach notification laws don't apply to them". The breach occurred in October 2016, but was not revealed until last month.

Sullivan and Clark did not respond to requests for comment.

The revelation has gotten the startup in hot water with regulators and prosecutors.

Last week, three more top managers in Uber's security unit resigned. The bounty program is meant to reward security researchers who bring bugs to the company's attention so that a fix can be put into place.



Other News

Trending Now

Republicans just received 2 alarming reviews of their tax plan
President Donald Trump's approval rating dropped three points from a late November survey to 35 percent. Here is a link to more details on the breakdown of the survey, including various subgroups.

Iran's Rouhani calls for uprising on US Jerusalem move
The Iranian president went on to say: "We have to be aware and ready in the face of the USA , the Zionist entity and their tails". Speaking to local reporters, Khamenei referred to Jerusalem by using the Arabic name for the city, Quds.

Huawei Nova 2s launched with 6-inch display and Kirin 960 chipset
Coming to the pricing, the Huawei Nova 2s is priced at 2699 Yuan for the 4GB RAM variant and is now available for registrations. On the front, the Nova 2s comes with a wide-angle 20-megapixel lens and another 2-megapixel camera for portrait selfies.

Flynn Said Russian Sanctions Would be 'Ripped Up,' Whistle-Blower Says
Cummings described the account in a letter Wednesday to the panel's Republican chairman, Rep. Cummings also said that his staff had been in consultations with Mr.

Cineworld Group (CINE) Rating Lowered to Hold at Peel Hunt
Ted Baker Plc engages in the design, wholesale, and retail of menswear, womenswear, and accessories under the Ted Baker name. Three investment analysts have rated the stock with a hold rating and six have assigned a buy rating to the stock.

MI county without active Toys for Tots program
Last year, our KIRO 7 Toy Drive, which benefits Toys for Tots, brought in some 40,000 toys and more than $5,000. This year, the Marines need to collect 90,000 toys to help 25,000 needy kids across the state.

Priyanka Chopra voted Sexiest Asian Woman, dethroning Deepika Padukone
Television actress Drashti Dhami took the 6th position and the Tiger Zinda Hai actress Katrina Kaif was on 7th. The actor has topped the list of 50 Sexiest Asian Women, a poll conducted by London-based weekly Eastern Eye .