Last year’s data breach, which saw the details of 57 million accounts compromised, affected about 2.7 million accounts in the UK.
The October 2016 data breach of Uber’s systems affected up to 2.7 million user accounts in the UK belonging to both customers and drivers, it has emerged.
The breach saw details of 57 million accounts compromised, and Uber has been heavily criticised for not admitting sooner that its systems had been hacked, and for paying off those responsible. The organisation has already parted company with its chief security officer, Joe Sullivan, over the 13-month cover-up.
The data is understood to have included names, email addresses and mobile phone numbers, but according to Uber, trip location history, credit card and bank account numbers, and dates of birth were not downloaded.
In a statement, Uber said the 2.7 million figure was still an approximation, not an accurate or definitive number.
“Sometimes the information we get through the app or our website that we use to assign a country code is not the same as the country where a person actually lives,” said the firm.
Information Commissioner’s Office (ICO) deputy commissioner James Dipple-Johnstone added: “On its own, this information is unlikely to pose a direct threat to citizens. However, its use may make other scams, such as bogus emails or calls, appear more credible. People should continue to be vigilant and follow the advice from the National Cyber Security Centre (NCSC).
