Taxi firm Uber has admitted that a data breach last year exposed the personal details of 50,000 of its drivers across the world. Uber said the attack was down to an unauthorised third party and was a one-off incident. The attack took place like May and wasn’t discovered by Uber until September.
The firm said that upon discovery of the attack it changed the access protocols for the database, removing the possibility of unauthorised access. The company has offered affected drivers a free one-year membership of Experian’s ProtectMyID Alert.
Katherine Tassi, Uber’s managing counsel of data privacy, said that Uber takes its responsibility to safeguard personal information seriously. “We are notifying impacted drivers, but we have not received any reports of actual misuse of information as a result of this incident,” she said. “We are sorry for any inconvenience this incident may cause. In addition, today we filed a lawsuit that will enable us to gather information to help identify and prosecute this unauthorised third party.”