Uber fined £385,000 for losing UK customer data

Weebarra

Weebarra

Level 17
Thread author
Verified
Top Poster
Well-known
Apr 5, 2017
836
Content source
https://www.bbc.co.uk/news/technology-46357001
Uber has been fined £385,000 for letting hackers steal data on 2.7 million UK customers. The full names, addresses and phone numbers of users went astray in the 2016 attack. The data had been stolen thanks to "avoidable data security flaws", said the Information Commissioner's Office. Uber has also been fined 600,000 euros (£532,000) by data regulators in Holland over the same breach, as it also affected 174,000 Dutch customers.
Data destruction
"This was not only a serious failure of data security on Uber's part but a complete disregard for the customers and drivers whose personal information was stolen," said Steve Eckersley, director of investigations at the ICO. Uber had done nothing to alert people that data had been downloaded or to support people affected, he added. Customers whose data had been stolen had been left at "increased risk of fraud", he said. The details on 2.7 million customers were part of a massive cache of information on 57 million people taken by the hacker group in October and November 2016. Uber paid the attackers $100,000 (£78,400) to destroy the data they took. Paying the hackers and then saying nothing about it was "not an appropriate response to the cyber-attack", said Mr Eckersley. In response, Uber said it had changed how it handled data since 2016 and now employed a chief privacy officer and a data protection head who oversaw its operations. It added: "We've made a number of technical improvements to the security of our systems both in the immediate wake of the incident as well as in the years since." "We're pleased to close this chapter on the data incident from 2016," it said.
In the US, Uber paid $148m to settle federal charges over the 2016 breach.
Click to expand...
 
Last edited:
  • Like
Reactions: CyberTech, Deletedmessiah, Black Wings and 9 others
Weebarra

Weebarra

Level 17
Thread author
Verified
Top Poster
Well-known
Apr 5, 2017
836
Personally i think the UK authorities should have fined them more. When you look at what the Dutch authorities fined them for 170,000 customers details being compromised compared to the 2.7 million UK customers then i think the fine should have been comparable but who am i to decide :unsure:

(Incidentally, i saw my first Uber car the other day in the city, still don't know anyone who has used one though :rolleyes:)
 
  • Like
Reactions: upnorth, Black Wings and ChemicalB
You must log in or register to reply here.

Similar threads

vtqhtr413
    • Like
Should Senior IT Professionals Be Accountable for Professional Decisions?
Replies
0
Views
859
News Archive
vtqhtr413
vtqhtr413
Gandalf_The_Grey
    • +Reputation
    • Like
    • Wow
Uber’s ex-CSO who hid data breach narrowly escapes prison
Replies
3
Views
439
News Archive
Zero Knowledge
Z
Gandalf_The_Grey
    • +Reputation
    • Like
Freecycle confirms massive data breach impacting 7 million users
Replies
0
Views
610
News Archive
Gandalf_The_Grey
Gandalf_The_Grey

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top