all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Uber’s Internal Network Breach and Business-Critical SaaS Data Compromise

Add to bookmarks
c
Dec. 2, 2022, 1:05 a.m. |

Cloud Security Alliance cloudsecurityalliance.org

Originally published by DoControl on September 16, 2022. Written by Corey O'Connor, DoControl. Multiple sources have reported that Uber has become the next victim to a man-in-the-middle attack with social engineering and Multi-factor Authentication (MFA) compromise at its core. In this example, the attacker purchased an Uber contractor's corporate password on the dark web, and then was successful in sending authentication pushes until the contractor approved one. After establishing persistenc...

breach business compromise critical data internal network saas uber

Visit resource

More from cloudsecurityalliance.org / Cloud Security Alliance

Cl
AI Hallucinations: The Emerging Market for Insuring Against Generative AI's Costly Blunders 3 days, 5 hours ago | cloudsecurityalliance.org
ai governance ai hallucinations blog chair +16
Cl
Why Business Risk Should be Your Guiding North Star for Remediation 3 days, 6 hours ago | cloudsecurityalliance.org
adoption agile attack attack surface +19
Cl
Upselling Cybersecurity: Why Baseline Security Features Shouldn’t Be a Commodity 3 days, 6 hours ago | cloudsecurityalliance.org
accountability advisory barr advisory consulting +23
Cl
Breach Debrief: The Fake Slackbot 1 week ago | cloudsecurityalliance.org
abusing adaptive shield breach design +15
Cl
Understanding the Nuances: Privacy and Confidentiality 1 week ago | cloudsecurityalliance.org
age american businesses clients +19
Cl
What’s in a Name? Defining Zero Trust for Leaders 1 week ago | cloudsecurityalliance.org
analyst board business concept +17
Cl
Are You Ready for Microsoft Copilot? 1 week ago | cloudsecurityalliance.org
ai chatbot chatbot copilot customers +13
Cl
Implementing a Data-Centric Approach to Security 1 week ago | cloudsecurityalliance.org
access access governance can cto +13
Cl
Cloud Security Alliance (CSA) AI Summit at RSAC to Deliver Critical Tools to Help Meet … 1 week, 2 days ago | cloudsecurityalliance.org
advice alliance april benefits +19

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Regional Leader, Cyber Crisis Communications

@ Google | United Kingdom
View on infosec-jobs.com

Regional Intelligence Manager, Compliance, Safety and Risk Management

@ Google | London, UK
View on infosec-jobs.com

Senior Analyst, Endpoint Security

@ Scotiabank | Toronto, ON, CA, M1K5L1
View on infosec-jobs.com

Software Engineer, Security/Privacy, Google Cloud

@ Google | Bengaluru, Karnataka, India
View on infosec-jobs.com

Senior Security Engineer

@ Coinbase | Remote - USA
View on infosec-jobs.com
View more jobs