Uber Technologies Inc. said it was investigating “a cybersecurity incident” Thursday, and reportedly took several internal systems offline as it tried to find the extent that its network was compromised.
The New York Times reported that Uber employees received a message Thursday afternoon reading: “I announce I am a hacker and Uber has suffered a data breach,” and listed several internal databases claiming to have been compromised. Uber then shut down its Slack messaging system, as well as some engineering systems.
An Uber spokesperson told the Times that an employee’s Slack account had been compromised, leading to the hacker accessing other internal systems. Slack is owned by Salesforce.com Inc.
CRM,
It was unclear exactly what kind of data was exposed, or how many people — if any — were affected.
“We are currently responding to a cybersecurity incident. We are in touch with law enforcement and will post additional updates here as they become available,” Uber said in a tweet Thursday night, and repeated when asked for comment by MarketWatch.
In 2017, it was revealed that Uber paid a $100,000 ransom to hackers to keep a 2016 data breach quiet. That breach reportedly exposed names, email addresses and phone numbers for 50 million riders and information from 7 million drivers.
Uber shares
UBER,
have rallied 62% over the past three months, but are still down 21% year to date, compared to the S&P 500’s
SPX,
6% gain over the past three months and 18% decline this year.
Updated to correct Slack’s owner.