The Uber company had a breach last year. In 2014, thousands of database records were stolen from the Uber company, the database held personal information like passwords and usernames, but now it seems that the Uber nightmare has become true. The cybercriminals which had stolen the Uber database have setup an online marketplace on the Darknet, in that marketplace, you will be allowed to buy hacked Uber accounts for 1 dollar each.
The 1 dollar accounts which are being sold have been collected from the Uber hack in 2014, but it is just since a couple of days that the Uber accounts are being sold on the black-market.
But as we explained, it is a market, and in markets, you will always find competition. The hacked Uber accounts are not only being sold by one provider, there is another provider on the black-market, which claims that he will provide an hacked account for 5 dollars. The cybercriminal claims that they are all genuine and active.
The Uber company claims that they had not been breached in 2014, but the VICE company did a research on the hacked Uber accounts, and they found out that the accounts which are being sold are genuine. The VICE company had contacted the owner of a Hacked Uber account, and the Uber account holder was surprised that the VICY company knew his password.
The following information is viewable when people buy these hacked Uber accounts:
- Partial credit card data (Full credit card data can be viewed, when logged in on the application)
- Telephone numbers
- Street addresses
The Uber company still claims that NO information has been stolen from their service:
“We investigated and found no evidence of a breach. Attempting to fraudulently access or sell accounts is illegal and we notified the authorities about this report. This is a good opportunity to remind people to use strong and unique usernames and passwords and to avoid reusing the same credentials across multiple sites and services.”
The legal team of VICE provided the following comments on the hacked Uber accounts:
Our legal team asked us to advise you, dear reader, that buying stolen login info from the internet is illegal and you should definitely not do that, so don’t.