Hackers compromised personal data from 57 million Uber riders and drivers

Vastavam web: Uber has said that hackers compromised personal data from some 57 million riders and drivers in a breach kept hidden for a year.

“None of this should have happened, and I will not make excuses for it,” said a statement from chief executive Dara Khosrowshahi, who took over at the ridesharing giant in August.The Uber chief said he only recently learned that outsiders had broken into a cloud-based server used by the company for data and downloaded a “significant” amount of information.

Stolen files included names, email addresses, and mobile phone numbers for riders, and the names and driver license information of some 600,000 drivers, according to Uber.”You may be asking why we are just talking about this now, a year later,” Khosrowshahi said.”I had the same question, so I immediately asked for a thorough investigation of what happened and how we handled it.” Khosrowshahi said that what he learned about Uber’s failure to notify users or regulators prompted corrective actions.Yahoo and Equifax were hit with criticism for how long it took the companies to disclose hacks.

“Breach disclosure is taking too long,” said McAfee vice president of labs Vincent Weafer.Weafer described Uber’s decision to pay the hackers off as unusual, and questioned whether it was wise.”You are relying on trust among thieves that the data has not been copied or leaked in any way,” Weafer said.The company also said it is notifying regulators, and monitoring affected rider accounts for signs of fraud.”While I can’t erase the past, I can commit on behalf of every Uber employee that we will learn from our mistakes,” Khosrowshahi said.