Young hacker tricks way into Uber's system: reports / Photo: © GETTY IMAGES NORTH AMERICA/AFP
-
Singer Rosalia quits Milan concert with food poisoning
-
Oil climbs and equities sink amid mixed messages on 'talks'
-
'Get out': Verstappen bans reporter from Japan press conference
-
Leaked Nepal report into deadly uprising calls for prosecuting ex-PM
-
Verstappen says last-minute F1 rule tweak will help only 'a tiny bit'
-
Oil rises and equities mixed amid mixed messages on 'talks'
-
EU to vote on Trump tariff deal -- but eyes rest of world
-
Somalia football slowly becomes a women's game
-
Venezuela oil reserves both entice and repel energy giants
-
Hamilton says more committed to F1 than ever at 41
-
China bans runner after mid-marathon splits goes viral
-
Myanmar's rebuild stutters year after deadly quake
-
Murray's 53 points propel Nuggets over Mavs
-
Israel strikes Iran as Trump says Tehran wants deal to end war
-
Wilkinson calls for England to find consistency before World Cup
-
Norris talks up McLaren chances after double China disaster
-
Teen sprint star Gout Gout 'ready to rock and roll' in Melbourne
-
Hezbollah rejects truce talks as Israel presses Lebanon strikes
-
Mideast war fuels disinformation about Taiwan's gas supply
-
Kohli, Suryavanshi to light up IPL as stampede dead remembered
-
Moon race: how China is challenging the US
-
Zimbabwe lithium export ban triggers crackdown, concerns
-
Embiid, George make triumphant NBA returns in Sixers win
-
North Korea's Kim 'warmly' welcomes Belarusian leader
-
Oil edges up and equities mixed amid mixed messages on 'talks'
-
Russian oil arrives as Philippines battles 'energy emergency'
-
G7 meets in France to narrow transatlantic Iran split
-
WTO mulls future of global trade under cloud of Mideast war
-
McKellar tells Waratahs to 'roll sleeves up' against rivals Brumbies
-
Iran says 'no negotiations' as US warns to accept 15-point deal
-
Postecoglou 'not done yet' as he watches Spurs and Forest battle relegation
-
US activists work to connect Iranians via Starlink
-
MLS dreams of global fanbase after World Cup showcase
-
Sabalenka and Rybakina to clash again in Miami semi-final
-
Former Australian Rules player is first to come out as openly gay
-
London plans two-day mega 100,000-runner marathon
-
UN pushes fuel solution for Cuba aid work amid US talks
-
Belarus' Lukashenko greeted by North Korean leader in Pyongyang
-
Video shows Chiefs star Mahomes making progress in NFL comeback
-
Bayern beat Man Utd in five-goal women's Champions League thriller
-
Wales would be 'massive asset' to World Cup, says Bellamy
-
NFL champion Seahawks to open season on September 9
-
Silver vows NBA tanking solution before draft, seeks Euroleague partnership
-
Day of reckoning arrives for social media after US court loss
-
World Cup concerns are exaggerated, says FIFA vice-president
-
NBA team owners approve exploring expansion to Seattle and Las Vegas
-
UK teenagers to trial social media bans, digital curfews
-
World champions England still 'unfinished' ahead of Six Nations, says Mitchell
-
Rybakina outlasts Pegula to reach Miami Open semis
-
Barca build huge lead on Real Madrid in Women's Champions League quarters
Young hacker tricks way into Uber's system: reports
Uber said Friday it was investigating a "cybersecurity incident," declining to comment on reports a young hacker had gained access to the ride-hailing company's computer network.
Uber put out word of the breach late Thursday in a tweet, and a hacker claiming to be 18 years old then posted screenshots taken from inside Uber computers.
"He says that he simply -- having already determined a valid username and password -- tricked an Uber staff member into granting him access to internal systems," independent cybersecurity analyst Graham Cluley said at his website.
Online comments purported to be by the hacker indicated he targeted an Uber employee with notifications for more than an hour, then reached out to the worker via WhatsApp claiming to be member of the company's tech support team.
"Many other companies are probably at risk of falling for a similar trick," Cluley said.
Uber said Friday that its services were all operational and that it had "no evidence that the incident involved access to sensitive data" such as users' trip history.
Employee software tools shut down as a precaution were being gradually restarted, the San Francisco based company added.
"There's a reason cybersecurity experts say that the human is often the weakest link," said Ray Kelly, a fellow at Synopsys Software Integrity Group in Silicon Valley.
"Whether it be phishing/SMS attacks or a simple phone call to get an employee to give up their credentials, 'social engineering' is going to be the easiest route for a malicious actor."
K.Brown--BTB
