Think, Talk, Hack

Browsing tag

Uber

Hacker found issues in Uber UberCENTRAL Tool that exposed user data

Bounty hunter Kevin Roh has discovered several security vulnerabilities in the Uber UberCENTRAL Tool that exposed user data. Security expert and bounty hunter Kevin Roh has discovered several security vulnerabilities in Uber’s Uber CENTRAL Tool that exposed user data. The UberCENTRAL service was launched in July, according to the company it is a dashboard that enables any business to request, […]

root

THE LATEST ANDROID OVERLAY MALWARE SPREADING VIA SMS PHISHING IN EUROPE

In April 2016, while investigating a Smishing campaign dubbed RuMMS that involved the targeting of Android users in Russia, we also noticed three similar Smishing campaigns reportedly spreading inDenmark (February 2016), in Italy (February 2016), and in both Denmark and Italy (April 2016). Unlike the RuMMS campaign, these three campaigns in Europe used view overlay […]

root

Uber Promo Code Hack Shows How To Get Unlimited Free Uber Rides

Short Bytes: An independent security researcher has found a critical vulnerability in Uber’s app that allows an attacker to brute force the invite URL and grab unlimited promo codes up to $25,000 for unlimited free rides. However, Uber has refused to acknowledge the flaw and passed the bug report to its fraud team. An Egyptian security […]

root

UBER HACKING: HOW WE FOUND OUT WHO YOU ARE, WHERE YOU ARE AND WHERE YOU WENT!

Here at Integrity we love to be challenged, so whenever there is some free time, there is encouragement to do research or to break some things (http://labs.integrity.pt/advisories/) in addition to play foosball. We (@r0t1v, @fjreis, @fabiopirespt) decided to use this time to jump into some bug bounties. What is a bug bounty? As stated in […]

root

Psst: Here’s Uber’s most vulnerable code just waiting to be hacked

Company’s just-unveiled bug bounty program aims to outdo industry norms. Over the past decade, there’s been an explosion of bug bounty programs that pay hackers big cash rewards for finding vulnerabilities in applications and Web services. On Tuesday, ride-hailing service Uber became the latest company to embrace the trend with the unveiling of its own program. […]

root

Uber Petition Website Hacked- Hacker Uploaded Ad of Rival Firm Lyft

Due to a security flaw, researcher Austin Epperson took control of a page of Uber’s website and displayed the ad of its arch-rival Lyft. Security researcher Austin Epperson proved that Uber’s website was exploitable by hacking one of its micro-site. However, Epperson didn’t steal personal data nor did he spread any malware but to prove his […]

root

Stolen and Hacked Uber Accounts Are Being Sold for $1 on the Dark Web

You can buy a stolen Uber credential for $1 and enjoy free car rides. Sounds weird, right? According to Motherboard, thousands of hacked User accounts’ information is up for sale on AlphaBay, which is known for selling illegal and stolen products. Such dark net websites are selling Uber passwords and usernames along with telephone numbers […]

root