Uber Suffers A Data Breach

The names and license plate numbers of about 50,000 Uber drivers were exposed in a security breach last year, the company revealed on Friday.

Uber found out about a possible breach of its systems in September, and a subsequent investigation revealed an unauthorized third party had accessed one of its databases four months earlier, the company said.

The files accessed held the names and license plate numbers of about 50,000 current and former drivers, which Uber described as a “small percentage” of the total. About 21,000 of the affected drivers are in California. The company has several hundred thousand drivers altogether.

It’s in the process of notifying the affected drivers and advised them to monitor their credit reports for fraudulent transactions and accounts. It said it hadn’t received any reports yet of actual misuse of the data.

Uber will provide a year of free identity protection service to the affected drivers, it said, which has become fairly standard for such breaches.

The company said it had filed a “John Doe” lawsuit Friday to help it confirm the identity of the party responsible for the breach.

Source

Anthem Gets Hacked

Health insurer Anthem Inc, which has nearly 40 million U.S. customers, has confirmed that hackers had breached one of its IT systems and stolen personal information relating to current and former consumers and employees.

The No. 2 health insurer in the United States said the breach did not appear to involve medical information or financial details such as credit card or bank account numbers.

The information accessed during the “very sophisticated attack” did include names, birthdays, social security numbers, street addresses, email addresses and employment information, including income data, the company said.

Anthem said that it immediately made every effort to close the security vulnerability and reported the attack to the FBI. Cybersecurity firm FireEye Inc FEYE. said it had been hired to help Anthem investigate the attack.

The company did not say how many customers and staff were affected, but the Wall Street Journal earlier reported it was suspected that records of tens of millions of people had been taken, which would likely make it the largest data breach involving a U.S. health insurer.

Anthem had 37.5 million medical members as of the end of December.

“This attack is another reminder of the persistent threats we face, and the need for Congress to take aggressive action to remove legal barriers for sharing cyber threat information,” U.S. Rep. Michael McCaul, a Republican from Texas and chairman of the Committee on Homeland Security, said in a statement late Wednesday.

Source

Reddit ISO Profits

Social news hub Reddit enjoyed a major get when it interviewed Barack Obama last year. The big get for 2013 was reaching 90 million unique visitors a month, according to the company, on par with the likes of eBay. This season, even Microsoft co-founder and philanthropist Bill Gates joined its Secret Santa gift exchange.

Now, the self-dubbed “Front Page of the Internet” is going for a milestone it has been trying to reach since its founding in 2005: profitability.

After years of experimenting with paid subscriptions and display advertising, Reddit, with just 28 employees, has begun pouring resources into building an electronic bazaar.

Company executives say they increasingly believe such a venue is the answer to their long search for reliable revenue, complicated in part by their fans’ mistrust of advertising.

If Reddit Gifts, as the burgeoning bazaar is known, brings sustainable profitability, it would mark a turning point for an outfit that has exerted an outsized and sometimes controversial influence on Internet culture yet languished financially.

Reddit estimates over 250,000 items have been purchased over the holiday, mostly as part of the 50 or so mostly geek-oriented Secret Santa gift exchanges – where zombie- or fantasy-themed presents, say, change hands – that users have created.

Although Reddit won’t disclose details about how much money it has made from Reddit Gifts or its overall financial performance, it takes a 15 to 20 percent cut of every purchase.

Usually priced between $10 and $25, the goods reflect Reddit’s young and geeky user base, from collages of cats in steampunk apparel to coffee mugs branded by Imgur.com, a repository of funny Web pictures, to an entire category dedicated to bacon-related products. More than 250 merchants supply gifts curated and “up-voted” by the community, much as articles and links are elevated on the Reddit site itself.

The gift exchange made headlines this month after Gates signed up and surprised a Reddit user by sending her a travel book and a stuffed cow, symbol of the charity he donated to in her name.

The company, which is hoping to position itself as a bona fide shopping destination year-round, estimates that only 14 percent of its marketplace revenue comes from the Christmas-season gift exchange programs.

Yet those sales alone could put Reddit firmly in the black, said Dan McComas, the head of Reddit Gifts. He added that the company may choose to reinvest funds in e-commerce customer service and infrastructure.

Chief Executive Yishan Wong, a former Facebook executive, said Reddit was “kind of” breaking even and denied that pressure was mounting on his team to turn a profit.

Source

Acer Is The Latest Victim Of Computer Hacking

Taiwanese PC manufacturer Acer is investigating a cyber hacker attack that stole customer data from its Packard Bell division in Europe, the company said.

Acer said the security breach was limited to customers’ names, addresses, phone numbers, emails, and system serial numbers. No credit card data was stolen, it said. Acer provided no other details about the breach, and said the investigation was ongoing.

News of the breach was reported several days ago, after a hacker group called Pakistan Cyber Army claimed to have stolen the personal data of about 40,000 people from an Acer server in Europe. Acer did not comment on the attack at the time.

The Hacker News had published screen shots of the personal data and some of the source code that was stolen in the security breach. It also said that the Pakistan Cyber Army would issue a press release detailing more about their motives. But so far, no new information has surfaced from the hacking group.

Read More….