Uber Hit in Cyberattack

September 19, 2022


Uber, the ride-hailing and food delivery company has suffered a systems breach, according to a report, with employees unable to access internal tools such as Slack. One employee resource page is said to have had a not safe for work image posted to it by the hacker.
An official statement posted to Twitter said, "We are currently responding to a cybersecurity incident. We are in touch with law enforcement and will post additional updates here as they become available."
Uber said the hacker behind the breach is affiliated with the Lapsus$ extortion group and the group used the stolen credentials of an Uber EXT contractor in an multi-factor authentication (MFA) fatigue attack where the contractor was inundated with two-factor authentication login requests until one of them was accepted

Incident Date

September 12, 2022

Estimated Cost

Unsure at this time


Type of Malware

No Malware identified

Threat Source