Uber claims hack came from Lapsus$, the group behind Microsoft and T-Mobile attacks

Uber believes it has recognized the crew behind final week’s hack, and the identify will sound all too acquainted. In an update on the breach, Uber mentioned the perpetrator was affiliated with Lapsus$, the hacking group that has focused tech corporations like Microsoft, Samsung and T-Mobile. The similar intruder may also have been answerable for the Rockstar hack that leaked Grand Theft Auto VI, Uber mentioned.

It’s additionally clearer simply how the offender might have accessed Uber’s inside methods. The attacker possible purchased the contractor’s login particulars on the darkish internet after they’d been uncovered via a malware-infected computer. Two-factor authentication initially prevented the hacker from getting in, however the contractor accepted an authentication request — that was sufficient to assist the invader compromise worker accounts and, in flip, abuse company apps like Google Workspace and Slack.

As earlier than, Uber harassed that the hacker did not entry public-facing methods or person accounts. The codebase additionally stays untouched. While these accountable did compromise Uber’s bug bounty program, any vulnerability stories concerned have been “remediated.” Uber contained the hack by limiting compromised accounts, quickly disabling instruments and resetting entry to companies. There’s additionally further monitoring for uncommon exercise.

The incident replace suggests the injury to Uber is comparatively restricted. However, it additionally signifies that Lapsus$ remains to be hacking high-profile targets regardless of arrests. It additionally underscores main tech corporations’ continued vulnerability to hacks. In this case, one incorrect transfer by a contractor was all it took to disrupt Uber’s operations.

All merchandise really useful by Engadget are chosen by our editorial crew, unbiased of our dad or mum company. Some of our tales embody affiliate hyperlinks. If you purchase one thing via one in every of these hyperlinks, we might earn an affiliate fee. All costs are right at the time of publishing.

Back to top button