Uber is a rideshare and food delivery company that works to connect drivers with customers in need of rides or deliveries. Uber began in March 2009 in San Francisco, California, and rapidly expanded to major cities around the country. The ride service later expanded into food delivery and now offers transportation services to users in most parts of the United States as well as in many other countries.
A single user utilized a social engineering attack to get into the Uber network files and to utilize the internal communication tools. The hack originated with a text message that convinced an Uber worker to offer passwords for Uber's internal systems. Once initialized, the attacker accessed an Uber slack account, secure databases, and more. Uber employees were told to stop using the internal communication system.
The Uber breach began on September 15, 2022.
The Uber breach impacts current employees and partners that have data stored in Uber databases. It may also expose data from Uber drivers and riders, but that is unclear. Workers are the most likely to be impacted by this attack, and drivers and riders may lose brief access to rideshare services.
No specific file count is known for this breach, only secure databases were accessed, and files may have been tampered with or copied. Everyday Uber users aren't expected to be impacted by this attack, but the company could suffer huge losses, and Uber employees may have their information compromised.