Uber is still reporting its recent hack. Everyone seems to be blaming the Lapsus$ group. A new example that even tech giants can be hacked.
Uber believes it was able to identify the team behind last week’s hack, and the group’s name will sound familiar to you. In a statement regarding the attack, Uber explains that the attacker is linked to Lapsus$, a hacker group that has previously attacked companies such as Microsoft, Samsung and T-Mobile. According to Uber, the same group may be behind the Rockstar hack that leaked a lot of Grand Theft Auto VI content.
Uber is still reporting its recent hack
It is also becoming clearer how the attackers were able to gain access to Uber’s internal systems. They allegedly bought contractor credential data on the dark web after it was exposed through a malware-infected computer. Two-factor authentication initially prevented the attacker from being hacked, but the contractor accepted the authentication request, which was enough to help the hacker compromise employee accounts and then use and abuse corporate apps like Google Workspace and Slack.
Everyone seems to blame the Lapsus $ group
Uber said the hackers did not gain access to any system containing public data or user accounts. The database was also unaffected. While officials did compromise Uber’s bug-finding bounty program, all of the vulnerability reports related to the case were registered as “fixed”. Uber contained the hack by restricting access to compromised accounts, temporarily disabling tools and resetting access to services. Particular attention was also paid to the search for any unusual activity.
A new example that even tech giants can be hacked
This new incident statement suggests that the damage caused by Uber is relatively limited. However, it also indicates that Lapsus$ is still hacking high-profile targets despite recent arrests. It also highlights the fact that big tech companies remain vulnerable to hacking. In this case, the contractor’s mistake was enough to undermine all of Uber’s operations.