Uber placed internal key on GitHub repository ‘




Hackers managed to gain access to the data of 50,000 Uber-drivers, came through a fault of the company itself, reports Ars Technica. The startup-cum-carrier published a key that was needed to access the database on its own GitHub repository.This appears according to Ars from documents Uber Friday filed a lawsuit against potential attackers. Uber wants from GitHub know from which IP addresses the appropriate file in the GitHub repository is accessed. Last Friday showed that an attacker had access to the data of 50,000 Uber-drivers.

“The data from these internal databases are well guarded by Uber,” the company states in the indictment. That is inconsistent with the statement of Ars Technica that Uber has published the key itself on the publicly accessible github repository. It is unknown how the key ended up there, but it is more common that developers accidentally ssh keys or passwords in public places GitHub.

It is not clear whether the attackers logged-with the captured key in the United States is punishable. In the Netherlands, they would probably be well: despite Uber key self-published, the attackers will have known that they were trespassing when she logged-on database. This makes them guilty of intrusion writes ICT lawyer Arnoud Engelfriet.

Tags: , , , , , , , , , , , , , , , , , ,

In: Technology & Gadgets Asked By: [18412 Red Star Level]

Answer this Question

You must be Logged In to post an Answer.

Not a member yet? Sign Up Now »