Expert Comment on Uber Cyber Security Incident
September 2022 by Timothy West, Head of Threat Intelligence, WithSecure
Timothy West, Head of Threat Intelligence, WithSecure comments:
‘The extent of the cybersecurity incident reported by Uber is unconfirmed, however screenshots claiming to relate to the incident shared on social media paint a picture of a significant compromise impacting Cloud services, and many internal administration services of Uber. Second and third hand reports on social media detail internal defacement activities, however attacker objectives are unknown. Initial access vectors have also not been confirmed, despite online speculation. The prominence of Uber as a company means it is likely that this event will generate a lot of social media traction which increases the likelihood that inaccurate information will propagate. Currently, all that can be stated with high confidence is what has been communicated by Uber.’
–