DataBreaches.Net

Menu
  • About
  • Breach Notification Laws
  • Privacy Policy
  • Transparency Report
Menu

Former Uber security chief will have to face wire fraud charges in hack coverup

Posted on June 30, 2022 by Dissent

Uber’s former Chief Security Officer Joseph Sullivan will have to face wire fraud charges over his alleged role in covering up a 2016 hack that exposed the personal information of millions of Uber passengers and drivers.

The breach and its aftermath continue to reverberate after it was disclosed that although Uber knew it had been hacked, Sullivan allegedly arranged to pay the hackers $100,000 described as a “bug bounty” to not disclose the breach. He also allegedly deceived others about the incident.

The wire fraud charges had been added in December 2021 to previous charges of misprison of a felony and obstruction of justice.

In 2018, Uber agreed to a $148 million settlement with state attorneys general and D.C. for violating state data breach reporting and reasonable data security laws in co

In October 2019, Vasile Mereacre and Brandon Glover pleaded guilty to the Uber and Lynda hacks and extortion conspiracy. Despite their guilty plea more than two years ago, they have yet to be sentenced and the next status conference on their case is scheduled for August 2 in federal court for the Northern District of California.

Sullivan is currently the chief security officer for Cloudflare. His LinkedIn profile indicates that prior to working for Uber, he had been Chief Security Officer at Facebook for five years.

TechCentral.ie reports:

US District Judge William Orrick in San Francisco rejected Sullivan’s claim that prosecutors did not adequately allege he concealed the hacking to ensure that Uber drivers wouldn’t flee and would continue paying service fees.

Orrick also rejected the former Uber security chief’s claim that the people allegedly deceived were Uber’s then-chief executive Travis Kalanick and its general counsel, not the drivers.

“Those purported misrepresentations, though not made directly to Uber drivers, were part of a larger scheme to defraud them,” said Orrick, according to the indictment.

Read more on TechCentral.ie.

Category: Business SectorOf NoteU.S.

Post navigation

← Deepfakes and Stolen PII Utilized to Apply for Remote Work Positions — FBI
Ransomware LockBit: a hundred victims per month in the first half →

Now more than ever

"Stand with Ukraine:" above raised hands. The illustration is in blue and yellow, the colors of Ukraine's flag.

Search

Browse by Categories

Recent Posts

  • CoinMarketCap Hacked, Scrambles to Remove Malicious Wallet Verification Popup
  • Montana Attorney General launches investigation into Lee Enterprises data breach
  • AT&T gets preliminary approval for $177 million data breach settlement
  • Aflac notifies SEC of breach suspected to be work of Scattered Spider
  • Former JBLM soldier pleads guilty to attempting to share military secrets with China
  • No, the 16 billion credentials leak is not a new data breach — a wake-up call about fake news (Updated)
  • Tonga’s health system hit by cyberattack (1)
  • Russia Expert Falls Prey to Elite Hackers Disguised as US Officials
  • Proposed class action settlement in In re Netgain Technology litigation
  • Qilin Offers “Call a lawyer” Button For Affiliates Attempting To Extort Ransoms From Victims Who Won’t Pay

No, You Can’t Buy a Post or an Interview

This site does not accept sponsored posts or link-back arrangements. Inquiries about either are ignored.

And despite what some trolls may try to claim: DataBreaches has never accepted even one dime to interview or report on anyone. Nor will DataBreaches ever pay anyone for data or to interview them.

Want to Get Our RSS Feed?

Grab it here:

https://databreaches.net/feed/

RSS Recent Posts on PogoWasRight.org

  • The Markup caught 4 more states sharing personal health data with Big Tech
  • Privacy in the Big Sky State: Montana’s Consumer Privacy Law Gets Amended
  • UK Passes Data Use and Access Regulation Bill
  • Officials defend Liberal bill that would force hospitals, banks, hotels to hand over data
  • US Judge Invalidates Biden Rule Protecting Privacy for Abortions
  • DOJ’s Data Security Program: Key Compliance Considerations for Impacted Entities
  • 23andMe fined £2.31 million for failing to protect UK users’ genetic data

Have a News Tip?

Email: Tips[at]DataBreaches.net

Signal: +1 516-776-7756

Contact Me

Email: info[at]databreaches.net

Mastodon: Infosec.Exchange/@PogoWasRight

Signal: +1 516-776-7756

DMCA Concern: dmca[at]databreaches.net
© 2009 – 2025 DataBreaches.net and DataBreaches LLC. All rights reserved.