"Uber Suffers Data Breach After Attack on Third-Party Vendor"

A threat actor named "UberLeaks" published employee email addresses, Information Technology (IT) asset information, and corporate reports online, resulting in a new data breach for Uber. The stolen Uber and Uber Eats data was published on a hacking forum known for publishing data breaches. Archives claiming to be source code associated with Mobile Device Management (MDM) platforms used by Uber and Uber Eats, as well as third-party vendor services, have been leaked. Uber confirmed that its data was stolen in a breach on Teqtivity, the company's asset management and tracking service. The third-party company also acknowledged the cybersecurity incident. The threat actor gained unauthorized access to Teqtivity's systems, compromising customer data. They infiltrated the Teqtivity Amazon Web Services (AWS) backup server containing code and data files pertaining to Teqtivity customers. According to the firm, the data exposed included device information such as serial number, make, model, and technical specs, as well as user data such as first name, last name, work email address, and work location details. Each post on the hacking forum refers to a Lapsus$ hacking group member. This group is suspected of being behind many high-profile attacks, including a September attack on Uber in which cybercriminals gained access to the company's internal network and Slack server. However, Uber claims that the Lapsus$ group is unrelated to this specific breach. The company also stated that it had not observed any malicious access to its systems. Nonetheless, security experts say that the leaked data contains enough information for targeted phishing attacks on Uber employees. This article continues to discuss the new data breach faced by Uber. 

Cybernews reports "Uber Suffers Data Breach After Attack on Third-Party Vendor"