Uber’s former head of safety, Joe Sullivan, was discovered responsible in a federal court docket Wednesday of concealing a 2016 knowledge breach for greater than a 12 months. A jury rejected Sullivan’s argument that different Uber executives have been conscious of the info breach and liable for it not being publicly disclosed for over a 12 months, in keeping with Bloomberg.
Sullivan was convicted of obstructing justice by protecting the breach hidden from the Federal Commerce Fee and actively hiding a felony by authorizing funds to the hacker accountable, in keeping with the Washington Put up.
The 2016 Uber hack uncovered the non-public knowledge of 57 million drivers and customers of the ride-sharing app, together with names, e mail addresses and driver’s license numbers.
The hack occurred in October 2016 however wasn’t disclosed publicly till November 2017. Uber realized of the info breach in November 2016 and paid $100,000 for the cyber thief to delete the data.
In September 2018, Uber reached a settlement with all 50 US states and the District of Columbia to pay $148 million for failing to report the hack.
Uber did not instantly reply to a request for remark.
Uber was once more breached by a cyber attacker final month, with Uber laying the blame on hacking group Lapsus$, which has breached Microsoft, Cisco, Samsung, Nvidia, Okta and Rockstar Video games in 2022.
Uber mentioned final month’s hack probably concerned a contractor’s private system changing into contaminated with malware after they accepted a verification notification, resulting in their credentials changing into uncovered. The worker’s credentials have been then probably bought from the darkish internet. Uber says no private knowledge was compromised.
