Uber says 2016 data breach hit 2.7 million UK users, or most of its base

(Reuters) - Uber Technologies Inc [UBER.UL] has informed Britain’s data protection regulator that about 2.7 million user accounts - representing the vast majority of people using the ride-hailing service in the country - were affected by a 2016 data breach.

FILE PHOTO: The Uber logo is seen on mobile telephone in London, Britain, September 25, 2017. REUTERS/Hannah McKay/File Photo

The breach, which the company disclosed last week involving 57 million users worldwide, saw names, mobile phone numbers and email addresses compromised, the company told UK’s Information Commissioner’s Office (ICO). 

ICO said it expects Uber to alert all the affected British users, both Uber drivers and passengers, as soon as possible.

The breach was a further setback to the Silicon Valley company after London’s transport regulator stripped it of its operating license in September, citing Uber’s approach to reporting serious criminal offences and background checks on drivers.

Uber failed to disclose the massive breach at the time, the company’s new chief executive officer said last week.

Under current British law organizations which fail to disclose data breaches to regulators face a maximum fine of up to 500,000 pounds ($670,600).

In Britain, Uber drew around 2.85 million users, on average, over the past three months, according to web and mobile app traffic measurement firm SimilarWeb, indicating that most British Uber users were likely caught up in the breach.

Uber said on its website on Wednesday that independent forensics experts had not seen any indication that trip location history, credit card numbers, bank account numbers or dates of birth were downloaded in the breach.

“We do not believe any individual rider needs to take any action,” the company said.

“We have seen no evidence of fraud or misuse tied to the incident. We are monitoring the affected accounts and have flagged them for additional fraud protection.”

Uber has been forced to quit several countries, including Denmark and Hungary, and faced regulatory battles in multiple U.S. states and around the world.

It comes after a tumultuous few months for the San Francisco start-up that led to former CEO and co-founder Travis Kalanick being forced out after a series of boardroom controversies.

Reporting by Parikshit Mishra in Bengaluru and Paul Sandle in London; Editing by Sriraj Kalluvila and Louise Heavens

Our Standards:The Thomson Reuters Trust Principles.
×
Stay Informed

When you subscribe to the blog, we will send you an e-mail when there are new updates on the site so you wouldn't miss them.

Apple to review software practices after patching ...
Bubble trouble? Bitcoin tops $11,000 after $1,000 ...

Related Posts