Uber has said it contacted law enforcement after a hacker apparently breached its network.
A security engineer said the intruder provided evidence of obtaining access to crucial systems at the ride-hailing service.
There was no indication that Uber’s fleet of vehicles or its operation were in any way affected.
“It seems like they’ve compromised a lot of stuff,” said Sam Curry, an engineer with Yuga Labs who communicated with the hacker.
That includes complete access to the Amazon and Google-hosted cloud environments where Uber stores its source code and customer data, he said.
Mr Curry said he spoke to several Uber employees who said they were “working to lock down everything internally” to restrict the hacker’s access. That included the San Francisco company’s Slack internal messaging network, he said.
He said there was no indication that the hacker had done any damage or was interested in anything more than publicity.
“My gut feeling is that it seems like they are out to get as much attention as possible.”
The hacker had alerted Mr Curry and other security researchers to the intrusion on Thursday evening by using an internal Uber account to comment on vulnerabilities they had previously identified on the company’s network through its bug-bounty programme, which pays ethical hackers to ferret out network weaknesses.
The hacker provided a Telegram account address and Mr Curry and other researchers then engaged them in a separate conversation, sharing screenshots of various pages from Uber’s cloud providers to prove they broke in.
AP attempted to contact the hacker at the Telegram account where Mr Curry and the other researchers chatted with them. But no one responded.
The New York Times reported that the person who claimed responsibility for the hack said they gained access through social engineering: they sent a text message to an Uber worker claiming to be a company tech employee and persuaded the worker to hand over a password that gave them access to the network.
The Times said the hacker reported being 18 years old and saying they broke in because the company had weak security.
One screenshot posted on Twitter and confirmed by researchers shows a chat with the hacker, in which they say they obtained the credentials of an administrative user through social engineering.
Social engineering is a popular hacking strategy, as humans tend to be the weakest link in any network. Teenagers used a similar ploy in 2020 to hack Twitter.
Twitter accounts hacked in 2020 — in pictures
Uber said via email that it was “currently responding to a cybersecurity incident. We are in touch with law enforcement”. It said it would provide updates on its Uber Comms Twitter feed.
The company has been hacked before.
Its former chief security officer, Joseph Sullivan, is currently on trial on allegations he arranged to pay hackers $100,000 to cover up a 2016 high-tech heist in which the personal information of about 57 million customers and drivers was stolen.
More from Neighbourhood Watch:
UAE currency: the story behind the money in your pockets
Fringe@Four Line-up
October 1 - Phil Nichol (stand-up comedy)
October 29 - Mandy Knight (stand-up comedy)
November 5 - Sinatra Raw (Fringe theatre)
November 8 - Imah Dumagay & Sundeep Fernandes (stand-up comedy)
November 13 - Gordon Southern (stand-up comedy)
November 22 - In Loyal Company (Fringe theatre)
November 29 - Peter Searles (comedy / theatre)
December 5 - Sinatra’s Christmas Under The Stars (music / dinner show)
What is safeguarding?
“Safeguarding, not just in sport, but in all walks of life, is making sure that policies are put in place that make sure your child is safe; when they attend a football club, a tennis club, that there are welfare officers at clubs who are qualified to a standard to make sure your child is safe in that environment,” Derek Bell explains.
LAST-16 EUROPA LEAGUE FIXTURES
Wednesday (Kick-offs UAE)
FC Copenhagen (0) v Istanbul Basaksehir (1) 8.55pm
Shakhtar Donetsk (2) v Wolfsburg (1) 8.55pm
Inter Milan v Getafe (one leg only) 11pm
Manchester United (5) v LASK (0) 11pm
Thursday
Bayer Leverkusen (3) v Rangers (1) 8.55pm
Sevilla v Roma (one leg only) 8.55pm
FC Basel (3) v Eintracht Frankfurt (0) 11pm
Wolves (1) Olympiakos (1) 11pm
Game Changer
Director: Shankar
Stars: Ram Charan, Kiara Advani, Anjali, S J Suryah, Jayaram
Rating: 2/5
Pharaoh's curse
British aristocrat Lord Carnarvon, who funded the expedition to find the Tutankhamun tomb, died in a Cairo hotel four months after the crypt was opened.
He had been in poor health for many years after a car crash, and a mosquito bite made worse by a shaving cut led to blood poisoning and pneumonia.
Reports at the time said Lord Carnarvon suffered from “pain as the inflammation affected the nasal passages and eyes”.
Decades later, scientists contended he had died of aspergillosis after inhaling spores of the fungus aspergillus in the tomb, which can lie dormant for months. The fact several others who entered were also found dead withiin a short time led to the myth of the curse.
Non-oil%20trade
%3Cp%3ENon-oil%20trade%20between%20the%20UAE%20and%20Japan%20grew%20by%2034%20per%20cent%20over%20the%20past%20two%20years%2C%20according%20to%20data%20from%20the%20Federal%20Competitiveness%20and%20Statistics%20Centre.%C2%A0%3C%2Fp%3E%0A%3Cp%3EIn%2010%20years%2C%20it%20has%20reached%20a%20total%20of%20Dh524.4%20billion.%C2%A0%3C%2Fp%3E%0A%3Cp%3ECars%20topped%20the%20list%20of%20the%20top%20five%20commodities%20re-exported%20to%20Japan%20in%202022%2C%20with%20a%20value%20of%20Dh1.3%20billion.%C2%A0%3C%2Fp%3E%0A%3Cp%3EJewellery%20and%20ornaments%20amounted%20to%20Dh150%20million%20while%20precious%20metal%20scraps%20amounted%20to%20Dh105%20million.%C2%A0%3C%2Fp%3E%0A%3Cp%3ERaw%20aluminium%20was%20ranked%20first%20among%20the%20top%20five%20commodities%20exported%20to%20Japan.%C2%A0%3C%2Fp%3E%0A%3Cp%3ETop%20of%20the%20list%20of%20commodities%20imported%20from%20Japan%20in%202022%20was%20cars%2C%20with%20a%20value%20of%20Dh20.08%20billion.%3C%2Fp%3E%0A
Specs
Engine: 51.5kW electric motor
Range: 400km
Power: 134bhp
Torque: 175Nm
Price: From Dh98,800
Available: Now
The smuggler
Eldarir had arrived at JFK in January 2020 with three suitcases, containing goods he valued at $300, when he was directed to a search area.
Officers found 41 gold artefacts among the bags, including amulets from a funerary set which prepared the deceased for the afterlife.
Also found was a cartouche of a Ptolemaic king on a relief that was originally part of a royal building or temple.
The largest single group of items found in Eldarir’s cases were 400 shabtis, or figurines.
Khouli conviction
Khouli smuggled items into the US by making false declarations to customs about the country of origin and value of the items.
According to Immigration and Customs Enforcement, he provided “false provenances which stated that [two] Egyptian antiquities were part of a collection assembled by Khouli's father in Israel in the 1960s” when in fact “Khouli acquired the Egyptian antiquities from other dealers”.
He was sentenced to one year of probation, six months of home confinement and 200 hours of community service in 2012 after admitting buying and smuggling Egyptian antiquities, including coffins, funerary boats and limestone figures.
For sale
A number of other items said to come from the collection of Ezeldeen Taha Eldarir are currently or recently for sale.
Their provenance is described in near identical terms as the British Museum shabti: bought from Salahaddin Sirmali, "authenticated and appraised" by Hossen Rashed, then imported to the US in 1948.
- An Egyptian Mummy mask dating from 700BC-30BC, is on offer for £11,807 ($15,275) online by a seller in Mexico
- A coffin lid dating back to 664BC-332BC was offered for sale by a Colorado-based art dealer, with a starting price of $65,000
- A shabti that was on sale through a Chicago-based coin dealer, dating from 1567BC-1085BC, is up for $1,950
The%20end%20of%20Summer
%3Cp%3EAuthor%3A%20Salha%20Al%20Busaidy%3C%2Fp%3E%0A%3Cp%3EPages%3A%20316%3C%2Fp%3E%0A%3Cp%3EPublisher%3A%20The%20Dreamwork%20Collective%C2%A0%3C%2Fp%3E%0A
The essentials
What: Emirates Airline Festival of Literature
When: Friday until March 9
Where: All main sessions are held in the InterContinental Dubai Festival City
Price: Sessions range from free entry to Dh125 tickets, with the exception of special events.
Hot Tip: If waiting for your book to be signed looks like it will be timeconsuming, ask the festival’s bookstore if they have pre-signed copies of the book you’re looking for. They should have a bunch from some of the festival’s biggest guest authors.
Information: www.emirateslitfest.com
The specs
Engine: 2.4-litre 4-cylinder
Transmission: CVT auto
Power: 181bhp
Torque: 244Nm
Price: Dh122,900
3%20Body%20Problem
%3Cp%3E%3Cstrong%3ECreators%3A%3C%2Fstrong%3E%20David%20Benioff%2C%20D%20B%20Weiss%2C%20Alexander%20Woo%3C%2Fp%3E%0A%3Cp%3E%3Cstrong%3EStarring%3A%20%3C%2Fstrong%3EBenedict%20Wong%2C%20Jess%20Hong%2C%20Jovan%20Adepo%2C%20Eiza%20Gonzalez%2C%20John%20Bradley%2C%20Alex%20Sharp%3C%2Fp%3E%0A%3Cp%3E%3Cstrong%3ERating%3A%3C%2Fstrong%3E%203%2F5%3C%2Fp%3E%0A
Napoleon
%3Cp%3E%3Cstrong%3EDirector%3C%2Fstrong%3E%3A%20Ridley%20Scott%3Cbr%3E%3Cstrong%3EStars%3C%2Fstrong%3E%3A%20Joaquin%20Phoenix%2C%20Vanessa%20Kirby%2C%20Tahar%20Rahim%3Cbr%3E%3Cstrong%3ERating%3C%2Fstrong%3E%3A%202%2F5%3Cbr%3E%3Cbr%3E%3C%2Fp%3E%0A
One in nine do not have enough to eat
Created in 1961, the World Food Programme is pledged to fight hunger worldwide as well as providing emergency food assistance in a crisis.
One of the organisation’s goals is the Zero Hunger Pledge, adopted by the international community in 2015 as one of the 17 Sustainable Goals for Sustainable Development, to end world hunger by 2030.
The WFP, a branch of the United Nations, is funded by voluntary donations from governments, businesses and private donations.
Almost two thirds of its operations currently take place in conflict zones, where it is calculated that people are more than three times likely to suffer from malnutrition than in peaceful countries.
It is currently estimated that one in nine people globally do not have enough to eat.
On any one day, the WFP estimates that it has 5,000 lorries, 20 ships and 70 aircraft on the move.
Outside emergencies, the WFP provides school meals to up to 25 million children in 63 countries, while working with communities to improve nutrition. Where possible, it buys supplies from developing countries to cut down transport cost and boost local economies.
Results:
2.15pm: Handicap (PA) Dh60,000 1,200m.
Winner: AZ Dhabyan, Adam McLean (jockey), Saleha Al Ghurair (trainer).
2.45pm: Maiden (PA) Dh60,000 1,200m.
Winner: Ashton Tourettes, Sam Hitchcott, Ibrahim Aseel.
3.15pm: Conditions (PA) Dh60,000 2,000m.
Winner: Hareer Al Reef, Gerald Avranche, Abdallah Al Hammadi.
3.45pm: Maiden (PA) Dh60,000 1,700m.
Winner: Kenz Al Reef, Gerald Avranche, Abdallah Al Hammadi.
4.15pm: Sheikh Ahmed bin Rashid Al Maktoum Cup (TB) Dh 200,000 1,700m.
Winner: Mystique Moon, Sam Hitchcott, Doug Watson.
4.45pm: The Crown Prince Of Sharjah Cup Prestige (PA) Dh200,000 1,200m.
Winner: ES Ajeeb, Sam Hitchcott, Ibrahim Aseel.
Full Party in the Park line-up
2pm – Andreah
3pm – Supernovas
4.30pm – The Boxtones
5.30pm – Lighthouse Family
7pm – Step On DJs
8pm – Richard Ashcroft
9.30pm – Chris Wright
10pm – Fatboy Slim
11pm – Hollaphonic
COMPANY PROFILE
Name: Kumulus Water
Started: 2021
Founders: Iheb Triki and Mohamed Ali Abid
Based: Tunisia
Sector: Water technology
Number of staff: 22
Investment raised: $4 million
