Uber admits it breached 57,000,000 accounts, then bribed the hackers to cover it up, now they’re paying a top ex-NSA lawyer to teach them transparencyOn November 22, 2017 by Kenna
Uber’s Chief Security Officer Joe Sullivan and his top aide have both been forced out of the company in an act of penance for the revelation that the company suffered a breach in October 2016 in which hackers stole personal data from 50,000,000 riders and 7,000,000 drivers, including 600,000 drivers’ US driving license numbers; Uber says the disgraced employees acted alone when they then paid the hackers who stole the data $100,000 to hush it up.
Joe Sullivan was a former US Federal Prosecutor.
The hackers gained access to an Uber AWS store by leveraging an insecure private Github repository, then stole the accounts and threatened Uber with public humiliation if they were not bribed into silence. Uber bribed them.
Uber says that it believes that the hackers then deleted its customers’ and drivers’ data and never used it to commit a fraud. It provides no evidence for this belief.
Uber has now hired an ex-NSA general counsel to advise the company on security. They do not state whether this lawyer is in any way qualified as a security practitioner. Ironically, the NSA is best known for illegally gathering, storing and sharing personal information and then lying about it.
Joe Sullivan, the outgoing security chief, spearheaded the response to the hack last year, a spokesman told Bloomberg. Sullivan, a onetime federal prosecutor who joined Uber in 2015 from Facebook Inc., has been at the center of much of the decision-making that has come back to bite Uber this year. Bloomberg reported last month that the board commissioned an investigation into the activities of Sullivan’s security team. This project, conducted by an outside law firm, discovered the hack and the failure to disclose, Uber said.
Uber Paid Hackers to Delete Stolen Data on 57 Million People [Eric Newcomer/Bloomberg]
The DC-based transparency group Property of the People successfully sued the White House to force it to disclose its visitor logs; now, in collaboration with Propublica, those logs are online as a free, searchable database.
In 1936, John Maynard Keynes suggested that a fair economic system would lead to “the euthanasia of the rentier, and, consequently, the euthanasia of the cumulative oppressive power of the capitalist to exploit the scarcity-value of capital” — implying that we have a choice between fairness and extreme wealth, and that the two couldn’t peacefully […]
40% of Detroiters have no internet access. The Detroit Community Technology Project and similar projects across the city are skipping over the telcos altogether and wiring up their own mesh broadband networks, where gigabit connections are transmitted by line-of-site wireless across neighborhoods from the tops of tall buildings; it’s called the Equitable Internet Initiative.
If your fingers aren’t dextrous enough for flimsy rolling papers, or you’re just fed up with the gross, laborious process of cleaning your pipe, check out the Twisty Glass Mini, available in the Boing Boing Store. This smoking accessory fits up to a half gram of plant material at a time. Inside its glass body, […]
Macs are pretty usable out of the box without any extra software. But the bundled stock apps don’t cover every use case, and don’t always provide the most configurable experience. To give your desktop some helpful new powers, we’ve collected some of our favorite apps in the Black Friday Mac Bundle. It’s available in the […]
The Ultimate DevOps and Cloud Computing Bundle will familiarize you with Amazon Web Services infrastructure management, as well as continuous integration and delivery practices. It’s being offered in the Boing Boing Store now for $49. Even with Amazon’s developer-friendly tools, rolling out changes to thousands (or millions) of users is no easy task. That’s why […]