Threat actor breaches many of Uber’s critical systems

by Matt Kapko | CYBERSECURITY DIVE

Social engineering and phishing attacks have ruined this summer for many tech companies, including Twilio, Mailchimp and some of their respective customers. These third-party intrusions can spread far and wide.

The threat actor behind the attack against Uber has been communicating with multiple journalists and threat intelligence analysts, and sharing screenshots of their exploits to confirm the extent of their access to Uber’s systems. 

The individual, in multiple Telegram exchanges with hackers and security engineers that were then posted to Twitter, also claims to have exfiltrated Uber’s vulnerability reports from HackerOne. 

The threat actor claims it accessed the company’s VPN and discovered the username and password for an admin user contained in PowerShell scripts, which allowed them to access many of Uber’s critical systems.

Uber declined to provide additional comment to Cybersecurity Dive. Company stock is down almost 5% Friday morning to $31.61 per share.

Read this and more at Cybersecurity Dive

Spread the love