NYCStock / Shutterstock.com
A hacker appears to have breached Uber’s internal systems, gaining administrative access to its AWS, HackerOne, Google Workspace, Slack, vSphere, and financial accounts. The hacker, who claims to be 18 years old, tells The Washington Post that they may leak Uber’s source code “in a few months.”
Uber is currently investigating the breach with help from the authorities. It has not commented on the incident, nor has it confirmed the severity of the hack. At the time of writing, we only have information provided by the alleged hacker (who is freely sharing screenshots of Uber’s internal systems) and Uber employees.
The hacker didn’t have much trouble breaking into Uber’s systems. They simply tricked an Uber employee into sharing VPN details. Once the hacker accessed Uber’s VPN, they scanned the company’s intranet and found admin login credentials in a powershell script.
Apparently there was an internal network share that contained powershell scripts…
“One of the powershell scripts contained the username and password for a admin user in Thycotic (PAM) Using this i was able to extract secrets for all services, DA, DUO, Onelogin,…
Read Full Article Source