Uber Driver Database Hacked


Uber can't stay out of the news.

The app-driven rideshare company made headlines several times this week when it announced it was pulling its service from Boise streets (at least for now) after on-again, off-again, on-again arrangements with City of Boise officials to reach an operating agreement.

In spite of Uber's announcement, city officials say they're still moving forward with a proposed new ordinance which would institute rules for such an operation. Meanwhile, a proposed measure surfaced at the Idaho Legislature this week which would allow Uber and companies like it to operate more freely in the Gem State, even bypassing local ordinances—the proposal has been pushed heavily by Uber lobbyists.

This morning, Uber has another, much bigger problem. The Los Angeles Times reports thousands of Uber drivers may have had their personal data compromised by a major breach. Late Friday, Uber confirmed that it knew as early as September 2014 that one of its databases may have been hacked by an unauthorized third party. Soon thereafter, it learned the same database had been accessed by an unauthorized third party in May 2014.

According to the LA Times, the database contained the names and license numbers of approximately 50,000 former and current Uber drivers from various states. Uber said it only began contacting affected drivers on Feb. 27, offering them all a one-year free membership in an identity protection service.