UBER Data Breach

UBER continues to be in the News for the wrong reasons – licensing issues, working conditions and pay for the drivers and data security.

But, are UBER maintaining customer data and driver data securely?

UBER suffered a huge data breach in 2016. The records of 57 million customers and drivers  were accessed by a hacker.

Uber only publicly disclosed the existence of the data breach in November 2017 close to a year after learning that hackers had infiltrated their systems.

The Uber Business

Between 2009 and 2016, UBER received around $11.5 billion in venture capital and private equity investment. It operates in 83 countries and 674 cities. UBER’s gross revenue in 2016 is reported to be about $20 billion.

UBER has 160,000 active drivers of which 14% are female. The drivers earn an average of $364 per month.

Uber’s Response

Uber said that of the 57 million people’s records accessed, about 2.7 million are British although it cannot be sure as it doesn’t always know the home country of its customers. Uber has about 5 million Britons on its systems.

For UK users, Uber stated that the affected data is names, mobile phone numbers and email addresses. The experts hired by Uber to investigate the data breach did not believe customers’ financial details were leaked.

However, its use may make other scams, such as bogus emails or calls appear more credible. People should continue to be vigilant and follow the advice from the National Cyber Security Centre (NCSC).

Uber says it is waiting for technical reports which should give full confirmation of the figures and the type of personal data that has been compromised.

Uber say “We are continuing to work with the NCSC plus other relevant authorities in the UK and overseas to ensure the data protection interests of UK citizens are upheld.”. The UK’s data protection commissioner expects Uber to alert affected users as it gets more information.

Do click on the Facebook or Twitter icons on top right to follow Fight Back Ninja.

Fightback Ninja Signature

Nicehash Bitcoin Theft

Criminals love Bitcoin because transactions are largely untraceable, no physical objects to store and can be converted into any currency.

Speculators love Bitcoin because although the value changes wildly and is unreliable, it has risen hugely during 2017.

Lots of scammers are pushing Bitcoin as much as they can – get the punters hooked while the price is rising.

Almost certainly it will crash at some point as there are no physical assets to underpin Bitcoin.

One other group that love Bitcoin is corporate hackers – break into an organisation that has Bitcoins stored on its servers, steal them and escape. There’s no cash or gold to move – it’s all on computer.

Nicehash was broken into and $64 million in Bitcoins stolen. Nicehash doesn’t know whether client accounts have been compromised.

Nicehash is an unusual business – It’s based in Slovenia and mines Bitcoins on behalf of its customers.

This is a strange process for which there is no correlation with real world currencies. Mining is how more bitcoins are created and requires huge amounts of computing power to solve equations.

If the price of Bitcoins continues to stay at such high levels then we can expect even more of this kind of attack.

Nicehash say that “Highly professional” hackers made off with around 4,700 Bitcoin and the Nicehash service was taken down so they could assess what had happened.

At least gold can be stored in a vault.

Do enter your email address and click on the subscribe button on top right to keep up to date with new posts.

Fightback Ninja Signature

Auto Re-scam the Scammers


Introducing Re:scam – an artificially intelligent email bot made to reply to scam emails. Re:scam wastes scammers time with a never-ending series of questions and anecdotes so that scammers have less time to pursue real people.

If you think you’ve received a scam email, forward it to me@rescam.org. Re:scam will even send you a transcript of the conversations it has had with the scammer – sometimes they can be quite funny.

What is Re:scam?

Re:scam is an initiative aimed at helping people from becoming fraud victims by occupying the time and resources of scammers through deploying a well-educated artificially intelligent chat bot. Instead of junking or deleting a scam email, you can now forward it to Re:scam who will continue the conversation indefinitely – or until the scammer stops replying.

Re:scam can take on multiple personas, imitating real human tendencies with humour and grammatical errors, and can engage with infinite scammers at once, meaning it can continue an email conversation for as long as possible. Re:scam will turn the table on scammers by wasting their time, and ultimately damage the profits for scammers.

Your email address and the original email content is not used in the emails to scammers.

Rescam replies but in a human manner with slang words, typos, jokes, etc. and natural delays in the replies.

To fight back send your scammers emails to me@rescam.org

That’s all you have to do.

Do click on the Facebook or Twitter icons on top right to follow Fight Back Ninja.

Fightback Ninja Signature

Easy To Guess Passwords and PIN Numbers

Most people have realised that they need to have passwords and pin numbers that can’t be easily guessed – don’t use your birthday or year of birth or the dog’s name or a common word etc.

But latest reports show there are still many people with passwords or pin numbers that are very easy to guess.

28% of people in a recent survey had a password that is in the top 20 most common ones and hence could be guessed very easily.

If they can be easily guessed they you could be hacked and lose money and more.

If your pin number is on the list below then change it urgently.

  • 1234
  • 1111
  • 0000
  • 1212
  • 7777
  • 1004
  • 2000
  • 4444
  • 2222
  • 6969

If you password is ”password” or “123456” or “12345678” then change it urgently.

Do leave a comment on this post – click on the post title then scroll down to leave your comment.