Masress : U.S. Justice Dept probes data breach at Uber

Finance Ministry presents three new investor facilitation packages to PM to boost investment climate Egypt, Bahrain explore deeper cooperation on water resource management Egypt condemns Israeli offensive in Gaza City, warns of grave regional consequences Cairo University, Roche Diagnostics inaugurate automated lab at Qasr El-Ainy Egypt expands medical, humanitarian support for Gaza patients Egypt investigates disappearance of ancient bracelet from Egyptian Museum in Tahrir Egypt launches international architecture academy with UNESCO, European partners African trade ministers meet in Cairo to push forward with AfCFTA Egypt's President, Pakistan's PM condemn Israeli attack on Qatar Egypt signs MoUs with 3 European universities to advance architecture, urban studies Madrid trade talks focus on TikTok as US and China seek agreement Egypt wins Aga Khan Award for Architecture for Esna revival project Egypt's gold prices hold steady on Sep. 15th Egypt's Sisi, Qatar's Emir condemn Israeli strikes, call for Gaza ceasefire Egypt condemns terrorist attack in northwest Pakistan Egypt advances plans to upgrade historic Cairo with Azbakeya, Ataba projects Egyptian pound ends week lower against US dollar – CBE Egypt hosts G20 meeting for 1st time outside member states Egypt to tighten waste rules, cut rice straw fees to curb pollution Egypt seeks Indian expertise to boost pharmaceutical industry Egypt prepares unified stance ahead of COP30 in Brazil Egypt harvests 315,000 cubic metres of rainwater in Sinai as part of flash flood protection measures Al-Sisi says any party thinking Egypt will neglect water rights is 'completely mistaken' Egyptian, Ugandan Presidents open business forum to boost trade Egypt's Sisi, Uganda's Museveni discuss boosting ties Egypt's Sisi warns against unilateral Nile measures, reaffirms Egypt's water security stance Greco-Roman rock-cut tombs unearthed in Egypt's Aswan Egypt reveals heritage e-training portal Sisi launches new support initiative for families of war, terrorism victims Egypt expands e-ticketing to 110 heritage sites, adds self-service kiosks at Saqqara Palm Hills Squash Open debuts with 48 international stars, $250,000 prize pool On Sport to broadcast Pan Arab Golf Championship for Juniors and Ladies in Egypt Golf Festival in Cairo to mark Arab Golf Federation's 50th anniversary Germany among EU's priciest labour markets – official data Paris Olympic gold '24 medals hit record value A minute of silence for Egyptian sports Russia says it's in sync with US, China, Pakistan on Taliban It's a bit frustrating to draw at home: Real Madrid keeper after Villarreal game Shoukry reviews with Guterres Egypt's efforts to achieve SDGs, promote human rights Sudan says countries must cooperate on vaccines Johnson & Johnson: Second shot boosts antibodies and protection against COVID-19 Egypt to tax bloggers, YouTubers Egypt's FM asserts importance of stability in Libya, holding elections as scheduled We mustn't lose touch: Muller after Bayern win in Bundesliga Egypt records 36 new deaths from Covid-19, highest since mid June Egypt sells $3 bln US-dollar dominated eurobonds Gamal Hanafy's ceramic exhibition at Gezira Arts Centre is a must go Italian Institute Director Davide Scalmani presents activities of the Cairo Institute for ITALIANA.IT platform

Thank you for reporting!

This image will be automatically disabled when it gets reported by several people.

U.S. Justice Dept probes data breach at Uber - Reuters

Amwal Al Ghad Published in Amwal Al Ghad on 19 - 12 - 2015

The U.S. Department of Justice is pursuing a criminal investigation of a May 2014 data breach at ride service Uber [UBER.UL], including an examination of whether any employees at competitor Lyft were involved in the episode, sources familiar with the situation said.
Earlier this year, Uber revealed that as many as 50,000 of its drivers' names and their licence numbers had been improperly downloaded. An investigation by Uber determined that an Internet address potentially associated with the breach can be traced to Lyft's technology chief, Chris Lambert, Reuters reported in October.
Department of Justice spokesman Abraham Simmons said on Wednesday he could not confirm or deny a criminal probe. No one has been accused of any wrongdoing, and it is unclear whether anyone will ultimately be charged in connection with the breach.
A recently hired attorney for Lambert, former federal prosecutor Miles Ehrlich, said Lambert "had nothing to do" with the breach.
"Given that Uber apparently lost driver data, a law enforcement investigation is to be expected," Ehrlich said. "And the benefit is that the culprit here is going to be identified - and that's going to remove Chris' name from any conversation about Uber's data breach, as it should."
In a statement on Friday, Lyft said "we have not been contacted by the DOJ, U.S. Attorney's office or any other state or federal government agency regarding any investigation."
Uber declined to comment. The people familiar with the matter could not be named because they were not authorized to speak publicly.
SEARCH FOR HACKER
Lyft is much smaller than Uber, which operates in more than 300 cities in 67 countries and has raised $7.4 billion from investors. The companies, based in San Francisco, compete fiercely for drivers and customers.
Uber learnt last year that someone downloaded its driver database, which should have been accessible only with a digital security key. A search for that key turned up a copy on the code-development site GitHub, where it had been left by mistake.
Uber then obtained information from GitHub about who had connected to that page before the breach and found only one Internet Protocol address that did not belong to an Uber user or have another plausible explanation, according to court documents.
Uber filed a civil lawsuit in San Francisco federal court in February in an attempt to unmask the perpetrator. The company's court papers claim that an unidentified person using a Comcast IP address had access to the security key.
On its own, Uber investigated that address and determined that it had been assigned to Lambert, Reuters reported in October.
A U.S. judge ruled that Uber could further probe the IP address, saying it was "reasonably likely" that such an inquiry could help identify the hacker. That ruling is on hold pending an appeal.
SWORN STATEMENT
Attorneys for the unnamed Comcast subscriber have pointed out in court that the data breach was conducted from a different IP address than the Comcast address that accessed the security key. Lyft said that Uber allowed the key for the database "to be publicly accessible for months before and after the breach."
The IP address the hacker used is associated with Anonine, a virtual private network service based in Sweden that is known for vigorously protecting the privacy of its users, two people familiar with the situation told Reuters.
Ehrlich said Lambert offered to provide Uber with a sworn statement that he had nothing to do with the breach, made under penalty of perjury.
Lambert signed the statement over the summer, a separate source familiar with the situation said. In it, Lambert also said he was not aware of anyone who has copies of Uber's database, and that he did not instruct anyone to access it, the source said.
However, Lyft and Ehrlich declined to confirm or deny that Lambert's Comcast address connected to the GitHub page containing the key. They also declined to give details about Lyft's internal investigation of the matter.
Lyft reiterated on Friday that it investigated the matter "long ago" and concluded "there is no evidence that any Lyft employee, including Chris, downloaded the Uber driver information or database, or had anything to do with Uber's May 2014 data breach."
Uber's lawsuit alleges the hacker violated civil provisions of the federal Computer Fraud and Abuse Act, as well as a similar California law. It is unclear if the leaked driver information was ever used by the hacker or anyone else.
Source: Reuters

Clic here to read the story from its source.