Uber Says Hackers Behind 2016 Data Breach were in Canada, Florida
World most famous Global Taxi Technology Company Uber about 25 million people whose data was compromised in the breach live in the United States, Uber Technologies Inc, according to chief information security officer John Flynn said in written testimony to a Senate Commerce Committee panel.
Of those, 4.1 million were drivers, said Flynn, whose testimony described new details about the hack, the handling of which prompted newly appointed Uber Chief Executive Officer Dara Khosrowshahi to fire two top security officials. Uber disclosed the breach of 57 million worldwide users in November, about a year after it occurred.
Reuters reported in December that a 20-year-old man was primarily behind the breach, and that he was paid by Uber to destroy the data through a so-called “bug bounty” program, which is designed to reward researchers for uncovering security vulnerabilities.
Flynn confirmed the man who obtained data from Uber was in Florida and revealed that his partner, who first contacted the company on Nov. 14, 2016, to demand a six-figure payment, was in Canada.
Uber’s security team made contact with both people and received “assurances” the pilfered data had been destroyed before paying them $100,000, Flynn said. Sources familiar with the breach told Reuters in December the company did a forensic analysis of the Florida hacker’s computer to verify the deletions.