Uber Blames LAPSUS$ Hacking Group for Recent Security Breach

Uber provided additional information on the security problem that occurred last week on Monday, attributing the attack to a threat actor it thinks to be connected to the infamous LAPSUS$ hacker ring.

The San Francisco-based company stated in an update that "this organisation often utilises similar approaches to target technology companies, and in 2022 alone has compromised Microsoft, Cisco, Samsung, NVIDIA, and Okta, among others."

When the City of London Police made the decision to detain seven people between the ages of 16 and 21 for their claimed ties to the group,

the financially motivated extortionist gang was dealt a devastating blow in March 2022. Two of those young people are accused of fraud.

A hack into Rockstar Games over the weekend has also been attributed to the 18-year-old hacker known as Tea Pot, who is also responsible for the Uber attack.

In addition to consulting with the U.S. Federal Bureau of Investigation (FBI) and the Justice Department on the subject,

Uber said it is working with "many prominent digital forensics firms" as the company's investigation into the event moves forward.

The ridesharing company confirmed a previous revelation from Group-IB when it said that a "EXT contractor" had their personal device infected with malware, their corporate account credentials stolen, and then sold on the black web.