Today, Social engineering is still used to get victims credentials. Teen hacker claims to have hacked UBER by using technique social engineering.
The hacker gained access to AWS, Google Cloud, and some financial data as Uber’s hack.
According to the Washington Post, the hacker posted screenshots of their alleged exploits on Telegram on Thursday and announced the hack in Uber’s internal Slack channels that evening.
An alleged hack was captured on screenshots posted on Telegram, showing access to HackerOne, Amazon Web Services, vSphere, Google Workspace, and Uber’s financial information.
The New York Times reported, hacker posed as an employee from Uber’s IT department. It appeared that the hacker was later able to gain access to other internal systems.
“We are currently responding to a cybersecurity incident. We are in touch with law enforcement and will post additional updates here as they become available.”, said UBER.
Uber Hacked Previous
It is not the first the Uber breached. In 2016, Uber was attacked by ransomware, with the sensitive information of 57 million users compromised, including their driver’s license numbers. But, the incident was kept secret for more than a year. Following the incident, the company paid $100,000 to the hackers and terminated two executives.
Security researcher and bug bounty hunter Sam Curry tweeted the following information about an Uber employee.
Someone hacked an Uber employees HackerOne account and is commenting on all of the tickets. They likely have access to all of the Uber HackerOne reports. pic.twitter.com/00j8V3kcoE
— Sam Curry (@samwcyo) September 16, 2022
Image credit : BBC