Uber has finally come up with a figure for the number of UK-based riders and drivers affected by its massive data breach: 2.7 million.
The taxi hire firm has been slammed by regulators around the world for keeping the hack, which happened in October 2016, quiet for the best part of a year.
To make matters worse, when it eventually ‘fessed up, Uber was unable to give regulators a nation-level breakdown of the 57 million affected users for days afterwards.

It has today updated the information on its webpage about the hack, saying that it involved “approximately” 2.7 million riders and drivers.
“This is an approximation rather than an accurate and definitive count because sometimes the information we get through the app or our website that we use to assign a country code is not the same as the country where a person actually lives,” Uber said.
The Information Commissioner’s Office said that it expected Uber to alert the affected people as soon as possible. (We assume this means actively getting in touch with people, rather than hoping they’ll be regular visitors to the hack info page.)
However, both the ICO and National Cyber Security Centre have said that, based on the information stolen, it is unlikely to directly expose people to financial crime but could put them at risk of scams.
“Uber has said the breach involved names, mobile phone numbers and email addresses,” said deputy commissioner James Dipple-Johnstone.
“On its own this information is unlikely to pose a direct threat to citizens. However, its use may make other scams, such as bogus emails or calls appear more credible.”
网络安全宣教动漫——揭密社工黑客
Dipple-Johnstone added that the ICO’s investigation team is “still waiting for technical reports which should give full confirmation of the figures and the type of personal data that has been compromised”.
担负关键任务的应用程序在不断增加,信息化越来越普及,安全问题也越来越受到重视,及早预防远比亡羊补牢要划算很多。
The UK’s investigation is just one of many the taxi biz is facing, with European regulators due to discuss what action to take at a meeting today.
Meanwhile, across the pond, the firm is facing state-backed lawsuits, with the second landing yesterday from the State of Washington. ®
对重点和高危员工群,使用课堂培训方式来提供安全防范意识。对所有员工使用电子学习,区分地对待不但可以节省成本,而且可以让教学不受时间和地点的限制。

猜您喜欢

诸城市试行重点风险岗位人员持证上岗
网络安全宣传日网上交易安全培训视频
网络安全法学习课堂
全球35名侏儒儿童相见欢
CNAVI-TEST A7AGIRLE
个人电脑安全基础操作指南