Uber has been fined £385,000 for failing to protect customers’ personal information during a cyber attack.
The company was fined by the Information Commissioner’s Office (ICO) following the data breach of 2,7million passengers.
In a statement, the ICO said a series of ‘avoidable data security flaws’ allowed the personal details of around 2.7 million UK customers to be accessed and downloaded by attackers from a cloud-based storage system operated by Uber’s US parent com.
This included full names, email addresses and phone numbers. The records of almost 82,000 drivers based in the UK, which included details of journeys made and how much they were paid, were also taken during the incident in October and November 2016. Read more