Cover Image

Uber : cyber breaches /

Uber's failure to adequately protect its data led to several computer data breaches between 2016 and 2022, with significant consequences for the ride-hailing business. The first major breach occurred in 2016 but went undisclosed until 2017. In this incident, the personal information of over 57...

Full description

Bibliographic Details
Main Author: McGovern, Virginia (Author)
Format: eBook
Language:English
Published: London : SAGE Publications: SAGE Business Cases Originals, 2024.
Series:SAGE Business cases.
Subjects:
Uber (Firm) > Case studies.
Business ethics > Case studies.
Social responsibility of business > Case studies.
Morale des affaires > Études de cas.
Entreprises > Responsabilité sociale > Études de cas.
Electronic books.
Online Access:Connect to the full text of this electronic book
Description
Summary:Uber's failure to adequately protect its data led to several computer data breaches between 2016 and 2022, with significant consequences for the ride-hailing business. The first major breach occurred in 2016 but went undisclosed until 2017. In this incident, the personal information of over 57 million Uber users and drivers was compromised by hackers, including phone numbers, email addresses, and names. Additionally, the hackers gained access to approximately 600,000 driver's license numbers. Instead of reporting the stolen data as required by law, CEO Travis Kalanick and security head Joe Sullivan tracked down the hackers, paid them USD 100,000, and secured a non-disclosure agreement. Fearing damage to the firm's reputation, Uber executives took it a step further and made it appear that the payout was part of a "bug bounty"-a practice among firms whereby they pay hackers to attack their software to test for vulnerabilities. The details of the hack remained hidden until the following year.This case study will help students understand the responsibility that comes with rapidly developing technology. The findings are important to business students because of the ethical lessons involved in the company's decision to cover up a breach of its computer system. The pilfered data included phone numbers, email addresses, and names of Uber customers and drivers. When the breach occurred, Uber chose not to notify law enforcement, customers, or drivers, which was in defiance of the law. The handling of this issue underscores the lengths to which Uber executives were willing to go to protect the company's reputation, even at the cost of breaking users' and drivers' trust.
Physical Description:1 online resource.
ISBN:9781071939994
1071939998