Uber Calls Lapsus$ As Bitang Keladi Hacking On Its Network, No Losses Reported
JAKARTA - Uber Technologies Inc announced on Monday, September 19 that a hacker affiliated with the hacking group Lapsus$ was responsible for the cyberattack that forced the online transportation company to temporarily close some internal communications last week.
Uber said attackers do not access user accounts and databases that store sensitive user information such as credit card numbers, bank accounts, or travel details.
"The attacker accessed several internal systems, and our investigation focused on determining whether there was a material impact," Uber said. They also added that the investigation was still ongoing.
The company said it had coordinated closely with the FBI and the US Department of Justice on the matter.
Last Friday's cybersecurity incident paralyzed Uber's internal communication system for a while and employees were restricted to using Salesforce's office messaging app, Slack.
Uber said the attackers entered the Uber account of the contractor after they received a request for approval of two factors. The action gave hackers access to several accounts and employee tools such as G-Suite and Slack.
Hackers, Lapsus$, have been targeting companies including Nvidia, Microsoft Corp and Okta Inc, an authentication service company that thousands of big businesses rely on.
Lapsus$ sendiri tidak dapat segera dihubungi untuk dimintai komentar oleh Reuters.
Hackers, who use the name "teapotucker," were also reported to have leaked footage of an early gameplay from the game Take-Two Interactive Software Inc "Grand Theft Auto VI" was waiting for on Monday, September 19.
Hackers have posted messages on forums about efforts to "negotiate deals" with the videogaming company.