John Paul M. Joaquin Tech 09.16.2022 22:Sep PM EDT

Uber Assures That No Sensitive Data Has Been Stolen During Hack

Uber's users are seemingly safe from being hacked or attacked.

The company behind the popular ride-hailing app recently announced that the hacker who hacked into its databases was unable to access or tamper with users' private data.

Uber promises to post additional updates for users to read while its investigation continues. It is also in touch with law enforcement and is currently coordinating with them to aid in its investigation.

Uber Hack Investigation Details

Uber mentioned in its recent security update that it found no evidence that the hacker that caused the cybersecurity incident on Sept. 16 was able to access sensitive user data.

The company also added that its Slack internal messaging service and engineering systems are back online following their abrupt disconnection on Sept. 16, which Uber decided to do as a precaution.

Additionally, all of Uber's offerings and services, such as its ride-hailing service, food delivery through Uber Eats, item delivery via Uber Freight, and the Uber Driver app, are operational.

However, Uber didn't mention any information about the hacker or the nature of the incident, per Engadget. There are also concerns that the hacker might have obtained access to the company's source code, which he could sell to other hackers for them to use on their own hacking campaigns.

The company didn't mention how much data was stolen or how long the hacker was able to remain inside the company's network.

You may remember that the hacker listed several internal databases that he allegedly compromised. According to Bleeping Computer, the hacker shared screenshots of the company's internal systems, email dashboard, and Slack server.

To be specific, the hacker has screenshots that prove he has access to many critical Uber IT systems, including its security software and Windows domain. He also has access to:

Uber's Amazon Web Services console
VMware vSphere/ESXi virtual machines
Uber's Google Workspace admin dashboard used to manage the company's email accounts

The publication also reported the hacker posted memes and jokes to Uber's employees on the company's Slack internal messaging service before posting his "I announce I am a hacker..." message.

Uber is still investigating the hacker's attack while being in touch with law enforcement.

More Details About the Hacker

Following his cyber attack on Uber, the hacker, who identified himself as an 18-year-old, told two security researchers that he wanted publicity. However, he didn't give any indication that he destroyed the data he obtained, per NPR.

He also gave more information about how he managed to get into Uber's network. You may remember that he talked to and convinced an Uber employee to give them their login credentials while pretending to be a corporate information technology person.

However, because the account he compromised has multi-factor authentication (MFA) enabled, the hacker allegedly used an MFA Fatigue attack and convinced the employee in question to accept the MFA request.

For those unaware, hackers use MFA Fatigue attacks involve the repeated sending of MFA requests until the victim gets tired of receiving them and accepts the notification.

After getting access, the hacker logged into Uber's internal network through the company's corporate VPN. While there, he began to scan Uber's Intranet for sensitive information, allowing him to find the credentials he needed to access the company's other internal services.