ANI PR Wire
27 Sep 2022, 14:45 GMT+10
New Delhi [India], September 27 (ANI/GPRC): CloudSEK's contextual AI based digital risk protection platform discovered a threat actor claiming to have compromised Uber, the American mobility service provider.
Uber has confirmed the above claims and responded to the incident by stating that it is in contact with law enforcement agencies. Social engineering was employed as an initial attack vector by the threat actor.
The threat actor was able to compromise an employee's HackerOne account to access vulnerability reports associated with Uber. To demonstrate the legitimacy of the claims, the actor has posted unauthorized messages on the HackerOne page of the company. Moreover, the attacker has also shared several screenshots of Uber's internal environment including their GDrive, VCenter, sales metrics, Slack, and the EDR portal.
"The Uber Hack is a classic case of failure on multiple levels where Over privilege or privilege mismanagement plays a pivotal role. Eliminating privilege escalation paths or monitoring for access changes in accounts can be initial answers for mitigation, apart from Darkweb and surface web monitoring", says Abhinav Pandey, Cyber Threat Researcher, Cloudsek.
The actor plausibly employed social engineering techniques as an initial attack vector to compromise Uber's infrastructure.
After attaining access to multiple credentials, the actor exploited the compromised victim's VPN access to:
Pivot and escalate privileges inside the internal network
Scan the internal network(Intranet) for access
Subsequently, the actor gained access to an internal network(Intranet) *.corp.uber.com where the actor got access to a directory, plausibly with a name "share", which provided the actor with numerous PowerShell scripts that contained admin credentials to the privileged access management system (Thycotic). This enabled the actor with complete access to multiple services of the entity such as Uber's Duo, OneLogin, AWS, Gsuite Workspace, etc.
This hack had a tremendous impact on Uber starting from the Obfuscation of the application code, hindering the usability of the application, leaked credentials, and access could facilitate multiple account takeovers and leaking of sensitive and critical information of the entity. Equipping malicious actors with details required to launch sophisticated ransomware attacks, exfiltrate data, and maintain persistence, not to mention the reputational damage for Uber.
Mitigation Steps include training employees against social engineering attacks and techniques, implementing a strong password policy and enabling MFA across logins, creating specialized user groups with minimum privileges, closing unused ports, limiting file access, patching vulnerable, and exploitable endpoints, preventing private keys from being shared unencrypted in messaging systems like Slack or WhatsApp.
Singapore headquartered CloudSEK is a contextual AI (Artificial Intelligence) company, founded in 2015, by cybersecurity expert Rahul Sasi, with the aim to construct a future where intelligent machines can emulate human cognition to predict cyber threats even before they occur.
CloudSEK's central proposition is to leverage AI to build a rapid and reliable detection, analysis, and alert system that offers swift detection across internet sources, precision analysis of threats, and prompt resolution with minimal human intervention.
CloudSEK offers the power of Cyber Crime monitoring, Brand Monitoring, Attack Surface monitoring, and Supply Chain Intelligence to give context to customers' digital risks. CloudSEK's single unified dashboard allows customers to triage and visualize all their digital threats in one place. CloudSEK also offers workflows and integrations to manage and remediate the identified threats.
Singapore headquartered CloudSEK is a contextual AI (Artificial Intelligence) company, founded in 2015, by cybersecurity expert Rahul Sasi, with the aim to construct a future where intelligent machines can emulate human cognition to predict cyber threats even before they occur.
CloudSEK's central proposition is to leverage AI to build a rapid and reliable detection, analysis, and alert system that offers swift detection across internet sources, precision analysis of threats, and prompt resolution with minimal human intervention.
CloudSEK offers the power of Cyber Crime monitoring, Brand Monitoring, Attack Surface monitoring, and Supply Chain Intelligence to give context to customers' digital risks. CloudSEK's single unified dashboard allows customers to triage and visualize all their digital threats in one place. CloudSEK also offers workflows and integrations to manage and remediate the identified threats.
This story has been provided by GPRC. ANI will not be responsible in any way for the content in this article. (ANI/GPRC)
Get a daily dose of Cambodian Times news through our daily email, its complimentary and keeps you fully up to date with world and business news as well.
Publish news of your business, community or sports group, personnel appointments, major event and more by submitting a news release to Cambodian Times.
More InformationOMAHA BEACH, France: Eighty-one years after the D-Day landings, a small group of World War II veterans has returned to the beaches...
BEIJING, China: The public security bureau in Guangzhou, a city in China, has announced a secret reward for more than 20 people it...
THE HAGUE - The International Criminal Court (ICC) has strongly condemned the United States for imposing sanctions on four of its judges,...
LOS ANGELES, California: As obesity rates among American teenagers climb to historic levels, more families and doctors are cautiously...
BERLIN, Germany: Germany has taken its first significant fiscal step to jumpstart its slowing economy. This week, the cabinet approved...
ISLAMABAD, Pakistan: Pakistan's army said on June 4 that its security forces raided a militant hideout and killed 14 insurgents during...
Mysore (Karnataka) [India], June 8 (ANI): Karnataka Chief Minister Siddaramaiah has said the government is seriously considering moving...
Lucknow (Uttar Pradesh) [India], June 8 (ANI): Indian cricketer Rinku Singh and Samajwadi Party MP Priya Saroj got engaged in a ceremony...
Lucknow (Uttar Pradesh) [India], June 8 (ANI): Former Indian cricketer Piyush Chawla expressed faith in new-look Indian squad for the...
(250608) -- PARIS, June 8, 2025 (Xinhua) -- Jannik Sinner returns a shot during the men's singles final between Jannik Sinner of Italy...
Antwerp [Belgium], June 8 (ANI): The Indian Junior Women's Hockey Team kicked off their tour of Europe with a fantastic win against...
Surrey [UK], June 8 (ANI): Former England cricketer Alec Stewart hailed young Indian batter Sai Sudharsan, saying that while with legend...