Teenage hacker group Lapsus$ is believed to be behind both the Uber hack and the “Grand Theft Auto VI” leak
Rideshare giant Uber is sharing more details on how it was hacked last weekand who the company believes was behind it.
According to Uber, the company believes that the teenage hacking group Lapsus$ was behind the breach. Uber explains in an update that Lapsus$ has been behind one number of hacks during the past year. The group’s goal have included NVIDIASamsung and Microsoft.
Lapsus$’s latest hack, and perhaps its most high-profile, happened just this weekend. On Sunday, the admission of video game developer Rockstar Games was highly anticipated Grand Theft Auto VI leaked on the internet. Around 90 clips showing off GTA VI games spread across the web. Rockstar later confirmed that the footage was legitimate. Lapsus$ has since taken credit for the leak.
Early gameplay footage of “GTA VI” has been leaked online
Along with the information about Lapsus$, Uber as well updated a post on their website about the hack with additional details it had uncovered in the investigation.
According to the company, a contractor’s account was compromised, setting in motion the chain of events that allowed hackers to gain access to Uber’s internal systems. Uber says it believes the contractor’s Uber password was accessed via malware installed on the user’s device, and that those credentials were possibly sold on the dark web.
The entrepreneur soon began receiving two-factor authentication login approval requests every time the unauthorized party attempted to log into their account.
“Eventually, however, the contractor accepted one and the attacker logged in,” Uber explained.
Once the hacker was able to log in through the contractor’s account, they gained access to other employees’ accounts, including those with permissions to internal tools like Slack and G-Suite. In the update, Uber confirms the authenticity of the screenshots showing the attacker’s Slack message announcing the hack that was circulated on social media last week. The company also confirmed that a “graphic image” was shown to employees when they tried to access internal company websites after the hacker “reconfigured Uber’s OpenDNS.”
US customs agents have been seizing Americans’ phone data unchecked for 15 years
Uber says the hacker was able to access and download internal messages on the company’s Slack. The hacker also gained access to the company’s HackerOne dashboard where security researchers report bugs.
However, Uber continues to claim that it has yet to find evidence that user data was compromised. The company has also yet to find any effects on the public Uber websites or apps.