International mobile-app-based transportation network Uber has denied that its server was hacked after thousands of customer accounts appeared on a dark web marketplace for sale for as low as $1.
“We investigated and found no evidence of a breach. Attempting to fraudulently access or sell accounts is illegal and we notified the authorities about this report. This is a good opportunity to remind people to use strong and unique usernames and passwords and to avoid reusing the same credentials across multiple sites and services,” Uber spokesperson said in a released statement.
Given Uber’s denial, tech site Motherboard which uncovered the breach says it’s unclear where the data came from or the scale of the breach. The logins may indicate that Uber’s security was hacked or compromised somehow, although the company says it has found no evidence of a breach. It also might mean that these customers were breached individually by other means, and their Uber credentials harvested and put up for sale.
This isn’t the first time that Uber has had data leak in some form. As many as 50,000 of its drivers may have had personal details exposed. Uber said that in September 2014 one of the company databases “could potentially have been accessed by a third party,” and Uber said that only the drivers’ names and license plates could have been accessed in that breach.
Uber network spans 55 countries and more than 200 cities including Lagos.
Buying stolen login info from the internet is illegal.
Sources: Motherboard, Gizmodo, Guardian UK
Follow us @sabinewsnaija