[ad_1]
Uber had used its bug bounty program to pay a Florida-based hacker $100,000 to wipe out all the information stolen from the ride-hailing service’s database final 12 months, in line with a brand new report by Reuters, citing sources with data of the matter. The hacker is believed to have been the offender behind a large knowledge breach in 2016 that compromised the private info of some 57 million Uber drivers and riders. A tech firm resorting to a bug bounty program as a means of paying a hacker who stole large volumes of information isn’t commonplace trade apply, as this sort of initiatives is often reserved to safety researchers who determine code vulnerabilities in software program and report their findings to its creators.
Chief Government Officer Dara Khosrowshahi formally disclosed the breach and the bug bounty cost final month, although it was made final 12 months, together with Uber’s disclosure that it fired its chief safety officer, Joe Sullivan, over how he dealt with the information breach that happened in October 2016. Based on latest experiences, Uber made the cost to have the hacker delete all of the stolen knowledge with out backing it as much as keep away from redistribution sooner or later, on circumstances that the incident is saved secret from the general public and regulators. The identification of the hacker stays unknown to anybody together with Uber. Reuters’ report signifies that the bug bounty cost was meant to assist set up the identification of the hacker in an effort to get him to signal an NDA with Uber, underneath which he would have been obliged to enter right into a authorized settlement with the agency to maintain the stolen knowledge secret and stay silent on the incident.
The ride-hailing firm’s bug bounty program is hosted by HackerOne, which immediately made the transaction on behalf of Uber, although it has no involvement in workings of the service in any other case, with all selections on the matter being made by the startup itself. Insiders declare former Uber CEO Travis Kalanick knew concerning the incident however it’s unclear whether or not he approved the cost or was even conscious of it. This June, Kalanick resigned from Uber following a request from a number of buyers who referred to as for his ousting from the corporate he co-founded in 2009.
The submit Report: Uber Paid Hacker From Florida To Wipe Stolen Data appeared first on AndroidHeadlines.com |.
[ad_2]
Source link
