• Menu
  • Skip to main content
  • Skip to primary sidebar

The Cyber Security News

Latest Cyber Security News

Header Right

  • Latest News
  • Vulnerabilities
  • Cloud Services
Cyber Security News

Uber Drivers’ Data Exposed in Breach of Law Firm’s Servers

You are here: Home / General Cyber Security News / Uber Drivers’ Data Exposed in Breach of Law Firm’s Servers
April 6, 2023

A mid-sized law firm symbolizing Uber has notified an unidentified quantity of its motorists that delicate data has been exposed and stolen because of to a cyber-attack. New Jersey-primarily based Genova Burns disclosed the breach in an email to consumers 1st obtained by The Register.

“We determined that an unauthorized 3rd party attained access to our units, and specified minimal documents were being accessed or exfiltrated amongst January 23 2023, and January 31 2023,” reads the discover.

“The investigation established that information and facts you furnished to Uber, which includes your title and Social Security variety and/or Tax Identification Quantity, was between the impacted info.”

✔ Approved From Our Partners
AOMEI Backupper Lifetime

Protect and backup your data using AOMEI Backupper. AOMEI Backupper takes secure and encrypted backups from your Windows, hard drives or partitions. With AOMEI Backupper you will never be worried about loosing your data anymore.

Get AOMEI Backupper with 72% discount from an authorized distrinutor of AOMEI: SerialCart® (Limited Offer).

➤ Activate Your Coupon Code


Read through far more on Uber info breaches: Uber Strike By New Facts Breach After Attack on Third-Party Seller

Genova Burns included that they are presently investigating the incident with regulation enforcement. The business stated it adjusted all its process passwords and is supplying afflicted motorists 12 months of complimentary id checking expert services via Kroll.

In accordance to Krishna Vishnubhotla, vice president of product or service system at Zimperium, an increasing selection of companies depend heavily on third-party services.

“A standard enterprise business works by using additional than 1000 cloud expert services and applications, quite a few of which are third-party services.”

However, Vishnubhotla extra that the central issue of this observe is the exchange and monetization of delicate data concerning various get-togethers. 

“Once this comes about, it’s challenging for any organization to preserve keep track of of where this details resides at all occasions and if it is appropriately secured.”

As a final result, encouraged Pathlock CEO, Piyush Pandey, “third-party access to main business enterprise programs need to be managed with the strictest of accessibility controls.” 

The govt spelled out that for general public, regulated corporations like Uber, 3rd-party access frequently has particular regulations attached to it to guarantee controls are enforced in a extremely monitored way.

“The challenge companies frequently experience with 3rd-party accessibility administration is how time-consuming the overview procedure is,” Pandey included.

“To be definitely effective, companies need to automate the workflow about third-party obtain assessments to be much more proactive in modifying procedures to cut down risk exactly where feasible.”

A lot more details on how firms can protect in opposition to identical knowledge breaches is out there in this assessment by CyberArk senior vice-president of EMEA, Rich Turner.

Editorial picture credit history: Ink Fall / Shutterstock.com


Some components of this posting are sourced from:
www.infosecurity-magazine.com

Previous Post: «Cyber Security News Google Mandates Data Deletion Policy For Android Apps
Next Post: Threat Actors Increasingly Use Telegram For Phishing Purposes Cyber Security News»

Reader Interactions

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Primary Sidebar

Report This Article

Recent Posts

  • University of Manchester Suffers Suspected Data Breach During Cyber Incident
  • Asylum Ambuscade: A Cybercrime Group with Espionage Ambitions
  • Barracuda Urges Swift Replacement of Vulnerable ESG Appliances
  • Google Launches Framework to Secure Generative AI
  • 5 Reasons Why Access Management is the Key to Securing the Modern Workplace
  • Security Experts Highlight Exploit for Patched Windows Flaw
  • Minecraft Users Warned of Malware Targeting Modpacks
  • Organizations Urged to Address Critical Vulnerabilities Found in First Half of 2023
  • Stealth Soldier: A New Custom Backdoor Targets North Africa with Espionage Attacks
  • Espionage Attacks in North Africa Linked to “Stealth Soldier” Backdoor

Copyright © TheCyberSecurity.News, All Rights Reserved.