Security News > 2022 > September > Uber reels from 'security incident’ in which cloud systems seemingly hijacked
Update: A Threat Actor claims to have completely compromised Uber - they have posted screenshots of their AWS instance, HackerOne administration panel, and more.
Bug hunter Sam Curry claims to have heard from an Uber employee.
Feel free to share but please don't credit me: at Uber, we got an "URGENT" email from IT security saying to stop using Slack.
The New York Times has also reported that Uber staff have been told to stop using the corporate Slack, and that the call to quit the messaging app came after the intruder shared a message stating: "I announce I am a hacker and Uber has suffered a data breach."
At the time of writing, your vulture's access to Uber and Uber Eats was in no way disrupted, and I have received no email or other notification from Uber regarding the incident.
Uber experienced a massive data breach in 2016 and tried to cover it up.
News URL
https://go.theregister.com/feed/www.theregister.com/2022/09/16/uber_security_incident/
Related news
- Google Acquires Wiz for $32 Billion in Its Biggest Deal Ever to Boost Cloud Security (source)
- Google to purchase Wiz for $32 billion in cloud security play (source)
- Cloud providers aren’t delivering on security promises (source)
- There are 10,000 reasons to doubt Oracle Cloud's security breach denial (source)
- Cloud security explained: What’s left exposed? (source)
- Oracle Cloud security SNAFU latest: IT giant accused of pedantry as evidence scrubbed (source)
- What native cloud security tools won’t catch (source)
- Observability is security’s way back into the cloud conversation (source)
- Google's got a hot cloud infosec startup, a new unified platform — and its eye on Microsoft's $20B+ security biz (source)
- Skyhawk Security brings preemptive cloud app defense to RSAC 2025 (source)