Uber’s Serious Breach Exposes Hacker Social Deception


Following what security experts are describing as a significant data breach, the ride-hailing service Uber said on Friday that all of its services were still available and that there was no proof that the hacker had gained access to sensitive user information.

The breach, which was apparently the work of a lone hacker, brought attention to a social engineering-based hacking technique that is becoming more and more successful: By pretending to be a colleague, the hacker managed to trick an Uber employee into giving up their login information. Then, they discovered passwords on the network that gave them the kind of privileged access only system administrators were granted.

The potential harm was significant: According to screenshots the hacker provided to security researchers, they were given full access to the cloud-based systems that Uber uses to store confidential customer and financial information.

Read More: Serious Breach at Uber Spotlights Hacker Social Deception

For more such updates follow us on Google News ITsecuritywire News. Please subscribe to our Newsletter for more updates.