House › Cyberwarfare

Former Uber CISO Joe Sullivan Discovered Responsible Over Breach Cowl Up

By Ryan Naraine on October 05, 2022

Tweet

A San Francisco jury on Wednesday discovered former Uber safety chief Joe Sullivan responsible of protecting up a 2016 information breach and concealing data on a felony from regulation enforcement.

After a month-long trial that included testimony from Uber CEO Dara Khosrowshahi, the jury discovered Sullivan responsible of each prices — obstructing an FTC investigation of a knowledge breach at Uber, and intentionally hiding a felony from authorities.

Sullivan, who was most just lately CISO at Cloudflare, faces as much as eight years in jail.

In response to the New York Instances, the jury of six males and 6 ladies took greater than 19 hours to succeed in a verdict.

Sullivan is a former federal prosecutor who led safety applications at a number of Silicon Valley corporations, together with eBay, PayPal and Fb earlier than his stint at Uber.

He was charged in August 2020 over his alleged position within the cover-up of the 2016 information breach that resulted within the theft of data of thousands and thousands of Uber drivers and customers.

[ READ: Former Uber CSO Charged Over 2016 Knowledge Breach Cowl-Up ]

Sullivan was charged with obstruction of justice and misprision of a felony. Throughout his time at Uber — he served as the corporate’s CSO between April 2015 and November 2017 — the ride-sharing big’s methods had been breached and the attackers managed to steal data on 57 million customers and drivers.

The hackers tried to extort Uber, demanding a six-figure fee. In an effort to cowl up the breach, Uber paid the cybercriminals $100,000 via its HackerOne bug bounty program, instructing them to destroy the info. Sullivan allegedly requested the people to signal non-disclosure agreements that falsely claimed no information had been taken.

The incident occurred within the fall of 2016, nevertheless it was solely disclosed to the general public roughly one 12 months later, after Dara Khosrowshahi was appointed Uber’s CEO. Sullivan was fired over his position within the dealing with of the breach and U.S. officers expressed discontent over how the incident was addressed, notably since data was withheld from the FTC, which on the time was investigating a smaller cybersecurity incident suffered by the ride-sharing agency in 2014.

“The prison grievance additionally alleges Sullivan deceived Uber’s new administration group concerning the 2016 breach. Particularly, Sullivan failed to offer the brand new administration group with crucial particulars concerning the breach,” the Justice Division mentioned. “Sullivan requested his group to organize a abstract of the incident, however after he acquired their draft abstract, he edited it. His edits eliminated particulars concerning the information that the hackers had taken and falsely acknowledged that fee had been made solely after the hackers had been recognized.”

An investigation revealed that two people dwelling in Canada and Florida had been behind the Uber hack. They pleaded responsible in October 2019, admitting that they stole data from unprotected AWS servers after which demanded fee to destroy the info. 

Associated: Uber Agrees to $148M Settlement With States Over Knowledge Breach

Associated: Courtroom Investigating Whether or not Uber Connived to Cowl its Tracks

Associated: Former Uber CSO Charged Over 2016 Knowledge Breach Cowl-Up

Get the Day by day Briefing

• Most Latest
• Most Learn

• Former Uber CISO Joe Sullivan Discovered Responsible Over Breach Cowl Up
• KKR Boosts NetSPI Stake with $410 Million Funding
• SCADA Methods Concerned in Many Breaches Suffered by US Ports, Terminals
• SecurityWeek to Host 2022 ICS Cybersecurity Convention October 24-27 in Atlanta
• Iranian Hackers Goal Enterprise Android Customers With New RatMilad Adware
• RealDefense Raises $30 Million to Purchase Extra Privateness, Cybersecurity Companies
• Canadian NetWalker Ransomware Affiliate Will get 20-Yr Jail Sentence in US
• US Authorities Particulars Instruments Utilized by APTs in Protection Group Assault
• Seattle Girl Will get Probation for Large Capital One Hack
• White Home Unveils Synthetic Intelligence ‘Invoice of Rights’

On the lookout for Malware in All of the Incorrect Locations?

First Step For The Web’s subsequent 25 years: Including Safety to the DNS

Tattle Story: What Your Pc Says About You

Be in a Place to Act By Cyber Situational Consciousness

Report Reveals Closely Regulated Industries Letting Social Networking Apps Run Rampant

2010, A Nice Yr To Be a Scammer.

Do not Let DNS be Your Single Level of Failure

How you can Establish Malware in a Blink

Defining and Debating Cyber Warfare

The 5 A’s that Make Cybercrime so Engaging

How you can Defend In opposition to DDoS Assaults

Safety Budgets Not in Line with Threats

Anycast – Three Causes Why Your DNS Community Ought to Use It

The Evolution of the Prolonged Enterprise: Safety Methods for Ahead Considering Organizations

Utilizing DNS Throughout the Prolonged Enterprise: It’s Dangerous Enterprise

Orbit Brain

http://orbitbrain.com/

Orbit Brain is the senior science writer and technology expert. Our aim provides the best information about technology and web development designing SEO graphics designing video animation tutorials and how to use software easy ways
and much more. Like Best Service Latest Technology, Information Technology, Personal Tech Blogs, Technology Blog Topics, Technology Blogs For Students, Futurism Blog.