Young hacker tricks way into Uber's system: reports / Photo: © GETTY IMAGES NORTH AMERICA/AFP
-
Pretty in pink: Dallas World Cup venue chasing perfect pitch
-
Wordle heads to primetime as media seek puzzle reinvention
-
Eurovision: the grand final running order
-
McIlroy, back in PGA hunt, blames bad setup for lead logjam
-
Kubo vows to lead Japan at World Cup with Mitoma out
-
McNealy and Smalley share PGA lead at difficult Aronimink
-
Drake drops three albums at once
-
Boeing confirms China commitment to buy 200 aircraft
-
Knicks forward Anunoby trains as NBA Eastern Conference finals loom
-
American McNealy grabs PGA lead at difficult Aronimink
-
Substitute 'keeper sends Saint-Etienne into promotion play-off
-
Sinner's bid to reach Italian Open final held up by Roman rain
-
Aston Villa humble Liverpool to secure Champions League qualification
-
US says Iran-backed militia commander planned Jewish site attacks
-
Bolivia unrest continues despite government deal with miners
-
Scheffler slams 'absurd' PGA pin locations
-
New deadly Ebola outbreak hits DR Congo, 1 dead in Uganda
-
Democrats accuse Trump of stock trade corruption
-
'Beyond the Oscar': Travolta gets surprise Cannes prize
-
Israel, Lebanon say extending ceasefire despite new strikes
-
Potgieter grabs early PGA lead at difficult Aronimink
-
Prosecutors seek death penalty for US man charged with killing Israeli embassy staffers
-
Judge declares mistrial in Weinstein sex assault case
-
Canada takes key step towards new oil pipeline
-
Iranian filmmaker Farhadi condemns Middle East war, protest massacres
-
'Better than the Oscar': John Travolta gets surprise Cannes prize
-
Marsh muscle motors Lucknow to victory over Chennai
-
Judge declares mistrial in Weinstein case as jury fails to reach verdict
-
Eurovision finalists tune up as boycotting Spain digs in
-
Indonesia's first giant panda is set to charm the public
-
Cheer and tears as African refugee rap film 'Congo Boy' charms Cannes
-
Norwegian Ruud rolls into Italian Open final, Sinner set for Medvedev clash
-
Bolivia government says deal reached with protesting miners
-
Showdowns and spycraft on Trump-Xi summit sidelines
-
Smalley seizes PGA lead with Matsuyama making a charge
-
Acosta quickest in practice for Catalan MotoGP
-
Nuno wants VAR 'consistency' as West Ham fight to avoid relegation
-
Vingegaard powers to maiden Giro stage victory
-
Iran to hold pre-World Cup training camp in Turkey: media
-
US scraps deployment of 4,000 troops to Poland
-
Ukraine vows more strikes on Russia after attack on Kyiv kills 24
-
Bayern veteran Neuer signs one-year contract extension
-
Ukraine can down Russian drones en masse. But missiles are a problem
-
Israeli strikes wound dozens in Lebanon as talks in US enter second day
-
'Everybody wants Hearts to win', says Celtic's O'Neill ahead of title decider
-
Scheffler stumbles from share of lead at windy PGA
-
New deadly Ebola outbreak hits DR Congo
-
Farke calls for Leeds owners to match his ambition
-
Zverev pulls out of home event in Hamburg with back injury
-
Xi, Trump eke small wins from talks but no major deals: analysts
Young hacker tricks way into Uber's system: reports
Uber said Friday it was investigating a "cybersecurity incident," declining to comment on reports a young hacker had gained access to the ride-hailing company's computer network.
Uber put out word of the breach late Thursday in a tweet, and a hacker claiming to be 18 years old then posted screenshots taken from inside Uber computers.
"He says that he simply -- having already determined a valid username and password -- tricked an Uber staff member into granting him access to internal systems," independent cybersecurity analyst Graham Cluley said at his website.
Online comments purported to be by the hacker indicated he targeted an Uber employee with notifications for more than an hour, then reached out to the worker via WhatsApp claiming to be member of the company's tech support team.
"Many other companies are probably at risk of falling for a similar trick," Cluley said.
Uber said Friday that its services were all operational and that it had "no evidence that the incident involved access to sensitive data" such as users' trip history.
Employee software tools shut down as a precaution were being gradually restarted, the San Francisco based company added.
"There's a reason cybersecurity experts say that the human is often the weakest link," said Ray Kelly, a fellow at Synopsys Software Integrity Group in Silicon Valley.
"Whether it be phishing/SMS attacks or a simple phone call to get an employee to give up their credentials, 'social engineering' is going to be the easiest route for a malicious actor."
K.Brown--BTB
