Hacker claims to breach Uber network, security researcher says

There was no indication that Uber’s fleet of vehicles or its operation was in any way affected by a hacker. Curry said he spoke to several Uber employees who said they were “working to lock down everything internally” to restrict the hacker’s access. “My gut feeling is that it seems like they are out to get as much attention as possible.” The hacker had alerted Curry and other security researchers to the intrusion Thursday evening by using an internal Uber account to comment on vulnerabilities they had previously identified on the company’s network through its bug-bounty program, which pays ethical hackers to ferret out network weaknesses. The hacker provided a Telegram account address and Curry and other researchers then engaged them in a separate conversation, sharing screenshots of various pages from Uber’s cloud providers to prove they broke in. The New York Times reported that the person who claimed responsibility for the hack said they gained access through social engineering: They sent a text message to an Uber worker claiming to be a company tech employee and persuaded the worker to hand over a password that gave them access to the network.