New York — Uber Technologies will pay $148m to settle claims related to a large-scale data breach that exposed the personal information of more than 25 million of its US users, Iowa’s attorney general said on Wednesday. The settlement, spanning 50 states, is the biggest data-breach payout in history, and marks the most sweeping rebuke by regulators against the San Francisco-based company, which earned a reputation for skirting rules in its push to dominate the ride-hailing market. The states’ agreement stemmed from data compromised in 2016 by hackers, who obtained 607,000 US driver’s licence numbers, as well as tens of millions of consumer e-mail addresses and phone numbers, a leak that Uber failed to disclose for more than a year after discovering the attack.
"Failing to report data breaches as soon as possible can harm consumers," said Iowa attorney general Tom Miller. The penalty comes at a pivotal time for Uber CEO Dara Khosrowshahi, who is laying the groundwork for a 2019...
Would you like to comment on this article?
Sign up (it's quick and free) or sign in now.
Please read our Comment Policy before commenting.
Subscribe now to unlock this article.
Support BusinessLIVE’s award-winning journalism for R129 per month (digital access only).
There’s never been a more important time to support independent journalism in SA. Our subscription packages now offer an ad-free experience for readers.
Cancel anytime.
Questions? Email helpdesk@businesslive.co.za or call 0860 52 52 00. Got a subscription voucher? Redeem it now.