3 Takeaways from the Uber Security Breach

Security Breach | Chicago IT | Equilibrium | EQInc.comUber announced Friday that 50,000 records of its driver's names and driver's license numbers may have been leaked. This security breach occurred about 10 months ago, and the company is late in its communication.

Uber discovered in September that one of its databases had possibly been accessed by a third-party in May. Uber waited 5 months before notifiying its users which is too long by California standards (its home state).

The time allowed to announce a discovered breach differs by state. For example, California is 60 days, Wisconsin is 45 and Florida is 30 days. It is typical for breached companies to complete a full incestigation before reporting to the public. Uber said they are still looking for more information that could help identify who may have taken the data.

3 Takeaways to Help Prevent this Type of Breach

  1. Install a SIEM system which will alert your support staff immediately if there is an anomaly in system access. This type of system can help you catch attackers red-handed and also prevent issues in the first place.
  2. Prepare an official incident response policy. When bad things happen, you will want to respond quickly to reduce risk and embarrassment for your organization. This will also help you to respond within your state's legal timeline.
  3. Ensure your IT security management and support teams are well staffed and trained to respond to intelligent security alerts.

To provide some context surrounding #3 above, The IT goverance organization, ISACA, recently conducted a survey of 1,209 IT professionals in the US. 90% agreed that there is a shortage of skilled cybersecurity professionals. Many organizations are turning to IT security firms to help mature and support their internal security program.

Contact Equilibrium for a free consultation. Learn how a Security Assessment will help you mature your organization's security program. Visit our Security Practice homepage and email us at .

Author: Todd Bey

Follow Us:

EQ Linked-In | Security | Chicago IT | Equilibrium IT | EQInc.com  EQ Facebook | Security | Chicago IT | Equilibrium IT | EQInc.com  EQ Google+ | Security | Chicago IT | Equilibrium IT | EQInc.com  EQ Twitter | Security | Chicago IT | Equilibrium IT | EQInc.com

 

Questions?  Call us today in Chicago at 773-205-0200 | Email us at  | Request a FREE Consultation

 

Contact Us

Call today! 773.205.0200 or use the form below.