A 20-Year-Old Florida Man Is Reportedly Behind the Massive Uber Hack
The bad news keeps piling up for shamed ride-sharing giant Uber. In November, news surfaced that the personal information of roughly 57 million Uber users was hacked. Not only that, but the company confirmed that it had paid the hackers $100,000 to delete the stolen data and keep the breach quiet. Now, we know that the hacker responsible for it all was a 20-year-old Florida man.
Three sources close to the hack confirmed to Reuters that the person responsible for the hack is a 20-year-old living in Florida, however, his identity couldn't be established. According to the Reuters report, the hacker is described as "living with his mom in a small home trying to help pay the bills." Members of Uber's security team reportedly paid the man to confirm his identity and sign a nondisclosure agreement. In addition, those close to the matter said that the company conducted a forensic analysis of his machine to make sure the hacked data had been removed.
The Reuters report details that the Florida hacker paid a second person to access GitHub in an effort to obtain credentials for accessing Uber's code and data. GitHub said that the incident isn't the result of security failures on its end.
Uber paid the 20-year-old $100,000 as part of its "bug bounty" program, which the company normally uses to reward people for identifying and reporting vulnerabilities in its software. The hack, which took place in October 2016, included the information such as email addresses and phone numbers of 57 million users, including 600,000 drivers in the US.
Uber spokesman Matt Kallman declined to comment on the identity of the hacker.
At the time of the payout to the hacker, Uber didn't prosecute him, as the company's security team didn't feel that he posed a further threat. Former Uber CEO Travis Kalanick reportedly knew about the hack and the company's move to pay the hacker in November 2016. Because Kalanick stepped down in June, the company's new CEO Dara Khosrowshahi took to firing two security officials, believing they should have informed regulators when the hack was discovered. Kalanick declined to comment.
Feature photo by Evelyn Hockstein/For The Washington Post via Getty Images
TPG featured card
at Bilt's secure site
Terms & restrictions apply. See rates & fees.
| 1X | Choose to earn up to 1X points on rent and mortgage payments with no transaction fee |
| 2X | Earn 2X points + the option to earn 4% back in Bilt Cash on everyday purchases |
Pros
- Choice to earn up to 1 Bilt Point per dollar spent on rent and mortgage payments
- Elevated everyday earnings with both Bilt Points and the option to earn Bilt Cash
- $400 Bilt Travel Portal hotel credit per year (up to $200 biannually)
- $200 Bilt Cash annually
- Priority Pass membership
- No foreign transaction fees
Cons
- Moderate annual fee
- Designed primarily for members seeking a premium, all-in-one card
- Earn points on housing with no transaction fee
- Choose to earn 4% back in Bilt Cash on everyday spend. Use Bilt Cash to unlock point earnings on rent and mortgage payments with no transaction fee, up to 1X.
- 2X points on everyday spend
- $400 Bilt Travel Hotel credit. Applied twice a year, as $200 statement credits, for qualifying Bilt Travel Portal hotel bookings.
- $200 Bilt Cash (awarded annually). At the end of each calendar year, any Bilt Cash balance over $100 will expire.
- Welcome bonus (subject to approval): 50,000 Bilt Points + Gold Status after spending $4,000 on everyday purchases in the first 90 days + $300 of Bilt Cash.
- Priority Pass ($469/year value). See Guide to Benefits.
- Bilt Point redemptions include airlines, hotels, future rent and mortgage payments, Lyft rides, statement credits, student loan balances, a down payment on a home, and more.