Last week Uber fell victim to a breach of its network in which they gained access via compromised contractor’s credentials, which are believed to have been bought on the dark web, result of the employee’s personal device being infected with malware. The hacker then used these details to attempt to log in to the employee’s Uber account, which was protected by Two-Factor Authentication sending a request to the employee. However, after multiple attempts, the victim approved the request therefore, allowing the attacker access.
Uber claims the attacker appears to have been unable to access the database containing customer data. The hacker also has not seemed to have made changes to the company’s codebase, although they could have downloaded information for an internal system used by the finance team at Uber to process invoices.
The compromise which has informally been linked to the hacker group Lapsus$, who also had been linked to the compromise of games developers Rockstar Games last weekend, the group exfiltrated and leaked early development footage of the highly anticipated Grand Theft Auto VI.
As well as footage of the new GTA VI the hacker also exposed source code that appears to be from GTA V. Although the attacker was able to download confidential data from the Rockstar Games database, the company have ensured that there would be no disruption to their live gaming services, nor has it left any long-term effects to any future projects.