Security News > 2022 > September > S3 Ep100.5: Uber breach – an expert speaks [Audio + Text]
I'm coming to you from Vancouver, I'm downtown, I'm looking out the window, and there's actually an Uber sitting outside the window.
At a very high level, the consensus appears to be that there was some social engineering of an Uber employee that allowed someone to get a foothold inside of Uber's network.
As bad as it seems to be Uber right now, in particular someone on Uber's PR or internal security teams, it's actually the best possible outcome.
Clearly, this person was able to breach Uber security without triggering any alerts initially, which allowed them the time to wander around.
Companies like Uber are large enough to have their own 24/7 security operations centre to monitor things, though we're not quite sure what happened here, and how long this person was in, and why they weren't stopped.
Don't perceive a brand like Uber being hacked as meaning that it's impossible for you to defend yourself.
News URL
https://nakedsecurity.sophos.com/2022/09/17/s3-ep100-5-uber-breach-an-expert-speaks-audio-text/