Waikato Times

Kiwi users affected by Uber data hack

- JULIE ILES

New Zealand informatio­n was stolen in the cyberattac­k on Uber that compromise­d data from 57 million riders and drivers.

Uber spokeswoma­n Nicky Preston confirmed the hack had reached New Zealand Uber users.

Preston said ‘‘no critical info was downloaded’’ or had been released, such as drivers’ licences or credit cards.

However, the names, phone numbers and email addresses of New Zealand users had been accessed by the hackers.

‘‘We’re not releasing numbers and to be completely honest I don’t know the scale,’’ she said.

‘‘While we have not seen evidence of fraud or misuse tied to the incident, we are monitoring the affected accounts and have flagged them for additional fraud protection.’’

Worldwide, 50 million riders had their addresses, phone numbers, names and emails compromise­d, and 7 million drivers’ details were accessed, including

600,000 US driver’s licence numbers. Uber informed the Privacy Commission­er of the incident on Wednesday, although the hack took place in October

2016, the company told Bloomberg. The company paid hackers US$100,000

(NZ$145,000) to delete the data and keep the breach quiet.

Privacy Commission­er John Edwards said he was disappoint­ed to only now be hearing the details of the breach.

‘‘This kind of incident underscore­s the importance and urgency of mandatory breach reporting laws, which the Government has been considerin­g since

2011.’’

In a report tabled by Parliament in February, Edwards recommende­d giving the commission the power to impose civil penalties for serious breaches of privacy under the Privacy Act.

At present, criminal fines for privacy breaches are $2000 for an individual and

$10,000 for a corporatio­n, and the bulk of enforcemen­t happens through the Human Rights Review Tribunal.

The company’s new chief executive, Dara Khosrowsha­hi, wrote in a blog post that the informatio­n was accessed by two individual­s through a third-party cloudbased service that Uber uses.

He said the hackers were subsequent­ly identified, and the company ‘‘obtained assurances that the downloaded data had been destroyed’’.

?? PHOTO: GETTY IMAGES ?? Some of the 57 million riders and drivers whose data was hacked were New Zealanders.
PHOTO: GETTY IMAGES Some of the 57 million riders and drivers whose data was hacked were New Zealanders.

Newspapers in English

Newspapers from New Zealand