Uber pays hacker's ransom and had them sign NDAs

[spartaman64]

Quote

Instead of reporting the hackers to police, the company allegedly paid $100,000 in exchange for a promise to delete 57 million user files the men stole off a third party server, prosecutors said. 

Within weeks of paying the ransom, Uber employees showed up at Brandon Glover's Winter Park, Florida, home and found Vasile Mereacre at a hotel restaurant in Toronto, Canada, the Justice Department said. The pair admitted their crimes, but Uber didn't turn them over to the cops. Instead, they had the hackers sign non-disclosure agreements, promising to keep quiet. The two hackers pleaded guilty on Wednesday.  

Quote

But there was a third person involved who was unknown to Uber, U.S. attorney for Northern California Dave Anderson told CBS News correspondent Kris Van Cleave in an exclusive interview. Anderson, who investigated the hack, said there's "no way to know definitively" what actually happened to the stolen data. 

Quote

The hackers also targeted a company owned by LinkedIn in December of 2016, but prosecutors say LinkedIn did not pay and promptly reported the hack to police. Uber eventually did as well — a year after the hack, when new CEO, Dara Khosrowshahi, publicly disclosed the attack.

Asked about the culture at Uber in 2018, Khosrowshahi told CBS News, "I think we've definitely made steps in the right direction but the work of culture is never done. … Are we going to make mistakes? Yep, but are we going to get better every year? Absolutely." 

Quote

The two known hackers were eventually arrested and pleaded guilty on Wednesday to conspiracy to commit extortion charges. They face a maximum of five years in prison. The third person involved remains at large.

source: https://www.cbsnews.com/news/uber-hack-company-allegedly-paid-hackers-ransom-had-them-sign-ndas/

 

Wtf they didn't even ask for their money back though I guess 100,000 dollars to uber is like nothing. I guess uber really didn't want people to know about the breach and how did uber not only find out who they are but knew where to find them? Shit an uber hitman might show up at my house next week because I posted this. If i mysteriously stop posting you guys know what happened. But this is crazy uber found out who they were and tracked them down just to have them sign NDAs XD. Uber should have taken them to the police imagine if the headline instead was uber tracks down hackers, shows up at their house and hauls them to the police station. People would be like dang uber's badass I ain't even mad my information got stolen. ... Ok maybe they'd still be mad but still.

[Arika]

Uber: hey, you hacked us, we'll give you money, but you cannot tell anyone about this

hackers: and we won't go to jail?

Uber: yep, we wont report you.

 

*gets out in the public anyway*

*hackers go to prison anyway*

 

 

really nailing it there Uber

 

 

EDIT: "There's incompetence, and then there's us. Uber. Everyone's private driver" 

[Windows7ge]

My biggest question would be why did they agree to sign the NDA?Hackers don't exactly abide by rules & laws.

[Master Disaster]

1 minute ago, Windows7ge said:

My biggest question would be why did they agree to sign the NDA?Hackers don't exactly abide by rules & laws.

They already had the money, promising to keep quiet in exchange for not going to prison is a pretty one sided deal.

[Levent]

I would have gotten their money AND sold the user details for more. 100K for 57 million user details? they got ripped off.

[Windows7ge]

2 minutes ago, Tegos said:

They're very nice hackers

4 minutes ago, Master Disaster said:

They already had the money, promising to keep quiet in exchange for not going to prison is a pretty one sided dealblockquote widget

[piemadd]

5 minutes ago, Windows7ge said:

My biggest question would be why did they agree to sign the NDA?Hackers don't exactly abide by rules & laws.

tbh wouldnt be surprised if they bribed some new dev with porn for access to the server while they were running kali linux and having their room crowded with hax0r memorabilia

 

(if you can't tell, this is a stereotype for 'hackers' who heavily exaggerate their skill)

[Windows7ge]

10 minutes ago, Master Disaster said:

They already had the money, promising to keep quiet in exchange for not going to prison is a pretty one sided deal.

Makes sense

 

8 minutes ago, Tegos said:

They're very nice hackers.

Clearly, in the world of big business only asking for $100K is a courtesy.

 

Edit:

Sorry you two. Mobile browser had a seizure and wouldn't let me fix the error.

[DoctorNick]

CBS! You're fake news!

[The Torrent]

just saying i dont think this is legit, or at least how its all presented to be...

[Windows7ge]

24 minutes ago, pierom_qwerty said:

tbh wouldnt be surprised if they bribed some new dev with porn for access to the server while they were running kali linux and having their room crowded with hax0r memorabilia

 

(if you can't tell, this is a stereotype for 'hackers' who heavily exaggerate their skill)

What hacking Uber looked like. *turn your volume down first*

 

[Syntaxvgm]

This reminds me of a dupe glitch in Runescape about 2003 I think. Jagex couldn't figure out how it worked, and it was destroying the economy. They offered anyone who could show them how to do it free lifetime membership status. IIRC- a bunch of people snitched on themselves- the very first person did get lifetime membership, the rest were banned. 

[Gullerback]

for 100k, Pretty much any Giant Corp would do what uber did. 

[spartaman64]

22 minutes ago, Syntaxvgm said:

This reminds me of a dupe glitch in Runescape about 2003 I think. Jagex couldn't figure out how it worked, and it was destroying the economy. They offered anyone who could show them how to do it free lifetime membership status. IIRC- a bunch of people snitched on themselves- the very first person did get lifetime membership, the rest were banned. 

i mean just because you know how to do it doesnt mean you are actually doing it

[Syntaxvgm]

4 minutes ago, spartaman64 said:

i mean just because you know how to do it doesnt mean you are actually doing it

I imagine they were looking for shit like tons of partyhats on their accounts. 

[Bacon soup]

4 hours ago, spartaman64 said:

Uber employees showed up at Brandon Glover's Winter Park, Florida, home and found Vasile Mereacre at a hotel restaurant in Toronto, Canada, the Justice Department said.

Uber employees are cucks. They should give me an executive job at Uber. I need to wet my golf clubs.

[Murasaki]

deja vu...

[Fnige]

On 11/2/2019 at 12:21 AM, Tegos said:

They're very nice hackers.

Canadian probably