No indication the hacker did any damage or was interested in anything more than publicity, says engineer.Uber Technologies Inc has said it was investigating a cybersecurity incident after its network was apparently breached and the transport provider had to shut down several internal communications and engineering systems.
A hacker compromised an employee’s workplace messaging app Slack and used it to send a message to Uber employees announcing the company had suffered a data breach, according to a New York Times newspaper report on Thursday that cited an Uber spokesperson.
It appeared the hacker was later able to gain access to other internal systems, posting an explicit photo on an internal information page for employees, the report added.
“We are in touch with law enforcement and will post additional updates here as they become available,” Uber said in a tweet, without providing further details.
We are currently responding to a cybersecurity incident. We are in touch with law enforcement and will post additional updates here as they become available.
— Uber Comms (@Uber_Comms) September 16, 2022
‘Lock down everything’
“It seems like they’ve compromised a lot of stuff,” said Sam Curry, an engineer with Yuga Labs who communicated with the hacker. That includes complete access to the Amazon and Google-hosted cloud environments where Uber stores its source code and customer data, he said.
Curry said he spoke to several Uber employees who said they were “working to lock down everything internally” to restrict the hacker’s access.
The Slack system was taken offline by Uber after employees received the message from the hacker, according to the Times report, citing two employees who were not authorised to speak pu …