When a breach is announced, most security and risk pros are not too surprised.
Posted on Forbes
By Heidi Shey
Yet Uber found a way to make the industry raise our collective eyebrows when it was discovered that the company not only suffered a breach in late 2016 and failed to notify affected parties, but that its leadership appeared to take things a step further by engaging in a conspiracy to conceal the event, paying hush money to the hackers/extortionists and hiding it from the General Counsel and Board.
Shady Company That Does Shady Things
Security practitioners wondering how Uber’s security leaders could behave the way they did and expect to get away with it need to take into account the broader picture of Uber’s behavior.