The Serious and Lasting Implications of the Uber Data Breach

Uber

In October of 2016, hackers stole the personal information of 57 million Uber users and Uber drivers, meaning names, email addresses, phone numbers, and more. Normal companies would have revealed the incident to the public, thus ensuring that the affected individuals could have made an effort to protect themselves by changing their passwords, paying close attention to their credit reports, and using other means. Uber decided to conceal the massive data breach before disclosing it months and months later, which might have been connected to the recent replacement of the previous CEO Travis Kalanick by the new CEO Dara Khosrowshahi in August of 2017.

With that said, a lot of people might be astonished to learn that the incident is somehow even worse than it sounds, which is something that should strain their sense of believability. Simply put, Uber has had this same problem in the not so distant past, which suggests an incredible lack of the ability to learn from mistakes that should be a normal part of such a major corporation. In 2014, hackers gained access to an Amazon data-store where Uber was storing personal information in un-ecrypted text form because an Uber engineer had posted the key on GitHub.

Meanwhile, the incident in 2016 happened because hackers managed to log onto an Amazon Web Services account by getting the login credentials from a private GitHub coding site that was being used by more Uber engineers. In other words, both incidents happened because Uber engineers were sloppy enough to leave such important information in publicly accessible locations, which doesn’t exactly suggest a great deal of consideration for cyber-security on Uber’s part.

The worst thing is that Uber was literally under investigation for the first data breach by the FTC during the summer of 2017, which was settled by Uber agreeing to 20 years of external auditing as well as a number of other conditions. One of those conditions happened to be an agreement to not misrepresent how Uber was protecting the private information of Uber users and Uber drivers, meaning that it breached the agreement with the FTC as soon as it had signed it by failing to disclose what had happened in regards to the second data breach. So far, the FTC has not commented about its plans regarding the second data breach, but one cannot help but suspect that it will not have the fondest of feelings for a corporation that negotiated with it in bad faith in such an egregious manner.

What Are the Potential Consequences?

Currently, it remains to be seen what kind of consequences will befall Uber as a result of its failure to disclose the second data breach. The FTC can impose civil penalties for failing to abide by the agreement, but there is no federal law that requires companies to disclose information about data breaches to the public. However, it is important to note that a lot of states do have laws that require companies to disclose such information within a limited period of time, meaning that Uber could well end up facing penalties because of those laws.

Furthermore, some of the Uber users and Uber drivers who were affected by the second data breach came from outside of the United States, meaning that Uber could end up getting penalized by other countries as well, which could be painful because some of those have much tougher standards in this regard than their US counterparts. Regardless, some consumers have already launched lawsuits against Uber, while some authorities have already stated their intentions to look into the matter.

What Does This Say about Uber?

Speaking bluntly, this is part of a pattern of problematic behavior on the part of Uber, which has shown a serious disregard for rules and regulations on numerous occasions. For example, it has made a regular habit of flouting local rules and regulations until the local authorities caved to them by changing those rules and regulations. Furthermore, there was how Uber was keeping a lot more information about iPhones collected through the Uber app than what had been agreed upon between them and Apple as well as how Uber has prevented police officers from investigating its operations in cities where its operations are not permitted by identifying them and then providing them with a fake version of the app populated with ghost cars. Summed up, Uber has been engaging in a lot of terrible shenanigans for a long, long time, meaning that the task of its new Dara Khosrowshahi does not look like an enviable one at the moment.


Add Comment

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Yogi Berra
20 Yogi Berra Quotes That Apply to Business
Gympass
20 Things You Didn’t Know About Gympass
Away
20 Things You Didn’t Know about Away
Steph Korey
10 Things You Didn’t Know about Away CEO Steph Korey
Massachusetts
How to Apply for Unemployment in Massachusetts
California
How to Apply For Unemployment in California
Pharmaceuticals
Is Denali Therapeutics a Solid Long Term Investment?
New York
How to File For Unemployment in New York
Deschutes River
The 20 Best Things to Do in Bend, OR, for First Timers
Costa Di Mare
The 20 Most Romantic Restaurants in the United States
Ocean Drive
The 20 Best Things to do in Newport, RI For First Timers
Lake Merritt
The 20 Best Things to Do in Oakland, CA for First Timers
1937 Cadillac Phaeton 5859
10 Things You didn’t Know About the 1937 Cadillac Phaeton 5859
2021 Genesis G80
10 Things You Didn’t Know About The 2021 Genesis G80
2020 Audi Q7 55 side
10 Things You Didn’t Know About the 2020 Audi Q7 55
Gumpert Nathalie EV
10 Things You Didn’t Know About the Gumpert Nathalie EV
Watches
How Jomashop Became a Leader in Online Watch Sales
Jack Mason Yacht Timer
The 10 Best Jack Mason Watches Money Can Buy
I.N.O.X. Professional Diver
The 20 Best Swiss Army Watches of All-Time
Orrery Tourbillon REF. 2GGBP.U01A
The 10 Best Graham Watches Money Can Buy
Andrew Serwer
How Joe Montana Achieved a Net Worth of $80 Million
Steven Crowder
How Steven Crowder Achieved a Net Worth of $3 Million
Don Lemon
How Don Lemon Achieved A Net Worth Of $10 Million
Sting
How Sting Achieved a Net Worth of $400 Million