Sunday, December 4, 2022
Home TECH Uber says Lapsus$ hacker group is behind cybersecurity incident

Uber says Lapsus$ hacker group is behind cybersecurity incident


Washington
CNN Business

Uber linked the cybersecurity incident it disclosed last week to hackers affiliated with the Lapsus$ gang, a group accused of numerous high-profile corporate data breaches. The company also said the attackers were able to download or access the company’s Slack messages and invoice-related data from an internal tool.

in a blog post monday uber

(UP)
said the attackers first gained access to the company’s systems when they successfully convinced a contractor to grant a multi-factor authentication challenge. The contractor’s network password was likely obtained separately from a dark web marketplace, Uber

(UP)
said.

“From there, the attacker accessed multiple other employee accounts that ultimately gave the attacker elevated permissions to a number of tools, including G-Suite and Slack,” the blog post says. “The attacker then posted a message to a company-wide Slack channel, which many of you saw, and reconfigured Uber’s OpenDNS to display a graphic image to employees on some internal sites.”

The attacker did not access user-facing systems, user accounts, databases containing personal information, or the code that powers Uber’s products, the company said. But he added that the investigation is continuing in coordination with law enforcement and various cybersecurity companies.

The blog post marks the first time Uber has publicly attributed the incident to the Lapsus$ gang, which addressed to Microsoft earlier this year and is also accused of attacking Nvidia, Okta and other companies.

Uber added that in response to the breach, it is strengthening its multi-factor authentication policies and has restored employee access to internal tools.

[ad_2]

RELATED ARTICLES

Elon Musk says Twitter will give ‘amnesty’ to suspended accounts starting next week

If Twitter looks like a garbage fire right now, just wait. CEO Elon Musk announced a blanket pardon for nearly all suspended accounts...

Officials Seek Fixes For Exploding E-Bike Batteries – NPR

Electric bicycles are becoming fashionable. But damaged or improperly charged batteries can explode and start deadly fires,...

LEAVE A REPLY

Please enter your comment!
Please enter your name here

- Advertisment -

Most Popular

Georgia Supreme Court reinstates state ban on abortions after about six weeks of pregnancy

Georgia Supreme Court reinstates state ban on abortions after about six weeks of pregnancy

Adderall and amoxicillin shortages raise questions about transparency at Big Pharma

Critical shortages of the ADHD drug Adderall and the antibiotic amoxicillin have left families reeling as the medications their loved ones need become harder...

Humberside Police judged ‘outstanding’ five years after being classified as failing | politics

A police force has gone from being classified as a failure five years ago to receiving the highest ratings in the modern era from...

Readers discuss Trump devotees, Republican love of guns and healthy eating – New York Daily News

Medford, LI: On successive news days this Thanksgiving week, I read that US Attorney General Merrick Garland has appointed a special prosecutor to investigate...