Young hacker tricks way into Uber’s system: reports

Uber reported Friday it was investigating a “cybersecurity incident,” declining to remark on reviews a young hacker experienced acquired entry to the ride-hailing company’s laptop or computer community.

Uber place out word of the breach late Thursday in a tweet, and a hacker saying to be 18 several years old then posted screenshots taken from inside Uber computer systems.

“He states that he simply—having by now identified a legitimate username and password—tricked an Uber staff member into granting him access to interior methods,” unbiased cybersecurity analyst Graham Cluley claimed at his web page.

On the internet reviews purported to be by the hacker indicated he specific an Uber worker with notifications for much more than an hour, then attained out to the worker through WhatsApp boasting to be member of the firm’s tech aid crew.

“A lot of other corporations are probably at risk of falling for a equivalent trick,” Cluley said.

Uber reported Friday that its companies were being all operational and that it had “no proof that the incident involved access to delicate facts” these kinds of as users’ trip background.

Staff software resources shut down as a precaution have been remaining slowly restarted, the San Francisco centered organization included.

“You will find a reason cybersecurity experts say that the human is typically the weakest backlink,” said Ray Kelly, a fellow at Synopsys Software package Integrity Group in Silicon Valley.

“Irrespective of whether it be phishing/SMS attacks or a basic cellphone connect with to get an worker to give up their credentials, ‘social engineering’ is going to be the simplest route for a destructive actor.”

© 2022 AFP