© Reuters. Uber offices are located in Redondo Beach, California, USA, March 16, 2022. REUTERS / Mike Blake
(Reuters) – Uber Technologies Inc said it was investigating a cybersecurity incident after reports of a cyber breach forced the company to shut down some internal communications and engineering systems.
On Friday, Uber (NYSE:) said it had no evidence that the problem involved access to sensitive user data such as trip history and internal software tools the company had developed. used after the attack came back online.
Uber began investigating the cybersecurity incident on Thursday.
A hacker hacked into an employee’s account on the workplace messaging app Slack and used it to send messages to Uber employees informing them that the company had suffered a data breach, as reported by Uber. New York Times https://nyti.ms/3QMveIu on Thursday. quoted an Uber spokesman.
Cybersecurity has been an issue for Uber in the past. It suffered a significant hack in 2016 that exposed the personal information of some 57 million of its customers and drivers.
Shares of the ride-hailing company fell nearly 4% on Friday amid a broad-based U.S. market decline. [.N]
It appears that the hacker was able to gain access to other internal systems, posting a sexually explicit photo on an internal employee information page, the Times report added.
“We are in contact with law enforcement and will post additional updates here as they become available,” Uber said in an https:// tweet without providing further details.
Hackers have claimed that they gained access to vulnerability information provided to Uber by HackerOne. Such confidential information can be used for further breaches at the company.
HackerOne said it is “in close contact with Uber’s security team, which has locked their data and will continue to assist with their investigation,” according to Chris Evans, HackerOne’s director of hacking.
Security researcher Bill Demirkapi said the screenshots circulating online seem to attest to hackers or hackers bragging that they have access to Uber’s internal systems.
“This story is still evolving and these are some extreme claims, but there seems to be evidence to support it,” he said in a statement posted on Twitter (NYSE:).
As the NYT reports, Uber employees have been instructed not to use the Salesforce (NYSE:Slack)-owned office messaging app, as reported by the NYT.
The report adds: “I am informed that I am a hacker and that Uber has suffered a data breach.”
One person claimed responsibility for the hack and told the newspaper that he had sent a text message to an Uber employee claiming to be the company’s IT employee.
The report said the employee was persuaded to hand over a password that gave the hacker access to Uber’s system.
Uber CEO Dara Khosrowshahi, who took charge a year after the 2016 hack, fired the then-security chief, who was later accused of attempting to cover up the breach.