Uber suffers second data breach via third-party vendor; drivers’ details leaked online

Uber has confirmed a new data breach after cybercriminals gained access to one of the company’s third-party vendors, Teqtivity, a known tech and IT asset-tracking solution.

News of the breach surfaced Dec. 10 after a threat actor using the handle “UberLeak” posted stolen Uber and Uber Eats data on a dark web forum.

BleepingComputer analyzed one of the data dumps and said that it includes the email addresses and Windows Active Directory data of over 77,000 Uber employees.

Although researchers initially believed the data was linked to an earlier security incident impacting Uber’s internal tools, the company said this was not the case.

“We believe these files are related to an incident at a third-party vendor and are unrelated to our security incident in September,” Uber told BleepingComputer. “Based on our initial review of the information available, the code is not owned by Uber; however, we are continuing to look into this matter.”

A couple of days into the investigation, it became clear that the data dumps shared by the malicious actors were linked to a compromised AWS backup server belonging to Teqtivity.

"The third party is still investigating but has confirmed that the data we've seen to date came from its systems, and to date, we have not seen any malicious access to Uber Internal systems," the ride-sharing company explained.

The company added that the breach exposed no sensitive data, corporate info or customer details.

Teqtivity "does not collect or store, and therefore the data does not include, sensitive personal information like bank account details or government identification numbers (e.g. SSNs, tax numbers), nor do they collect or store consumer, driver or courier information," an Uber spokesperson told The Register.

Since the leaked information contains the contact information of a subset of Uber employees, drivers should be wary of any unsolicited correspondence asking for sensitive data.

Looking for an easy way to monitor your digital identity and stay on top of data breaches?

Bitdefender Digital Identity Protection continuously monitors your personal information, alerting you in real time to data breaches and leaks. This lets you immediately change your passwords and secure your accounts to prevent financial loss or even social media impersonation, which can ruin your reputation.

Managing your digital footprint has never been easier. With our dedicated privacy tool, you can:

• Discover the extent of your digital footprint
• Find out if your personal information has been exposed in legal and illegal collections of data
• Benefit from 24/7 data breach monitoring for up to five email addresses
• Get instant alerts to new breaches and privacy threats