Advice for Uber customers and drivers
The National Cyber Security Centre (NCSC) has issued advice to customers and drivers after a breach was reported to them.
A breach of Uber customers’ and drivers’ records from October 2016 was reported to the NCSC on Tuesday 21 November 2017.
Based on current information, the NCSC have not seen evidence that financial details have been compromised. They are working with the ICO to verify the extent of this breach, including the type and volume of information compromised.
- Do not feel obliged to delete the app. The incident took place over a year ago and we have seen no evidence of additional risk having the app on your phone today.
- Immediately change passwords you used with Uber. Legitimate users can make a compromised password useless by replacing it with a new one the attacker does not know. If you re-used the same password on other accounts, you should change the password on those too.
- Be alert to potential phishing emails. Phishing attacks can come through emails sent by strangers that mimic an established or trusted party to lure compromising information from the recipient. Since Uber’s data includes personal information, such as customers’ phone numbers and driving licence information, these could be used by scammers to make phishing emails more convincing.
- Be vigilant to potential scam phone calls. Be especially vigilant against phone calls you receive. If you do receive a phone call that is suspicious - for example, one that asks you for security information - do not divulge any information and hang up. When you next pick up the phone, make sure there is a dial tone to ensure the caller is not still on the line. Immediately contact the organisation that the caller claimed to be from using a phone number gained from their company website. Do not use any details provided during the previous call – these could be bogus.
- Contact us if you think you have been a victim.
ActionFraud is the UK’s national fraud and cyber crime reporting centre.
We provide a central point of contact for information about fraud and cyber crime.
The easiest way to report fraud and cyber crime is by using our online reporting tool.Report
Latest News from
National Courier Fraud Practitioners Day16/10/2019 14:33:00
Police officers and staff from across the country are set to attend a special national Courier Fraud Practitioners Day, tomorrow (Thursday, 17 October).
The easy way to stop your online accounts getting hacked02/10/2019 10:20:00
Two-factor authentication (2FA) can help protect your online accounts, even if your password is stolen!
Fraudster sentenced after funding luxury holidays through £50k smishing scam01/10/2019 13:20:00
A fraudster from London who went on luxury holidays abroad after harvesting details from thousands of bank customers has been sentenced to two years and nine months in prison.
Banking industry stops £4.5 million of fraud a day in first half of 201927/09/2019 10:20:00
The finance industry prevented £820 million of unauthorised fraud in the first half of 2019.
Thomas Cook "refund" scams on the rise26/09/2019 15:20:00
We are aware of reports on social media that criminals are using the Thomas Cook liquidation as an opportunity to lure victims into financial scams.
HMRC calls on universities to protect students from tax scams24/09/2019 10:20:00
Warning from HMRC and Universities UK about tax related email scams.
Barclays issues warning to university students, as number of under-21s recruited as money mules nearly doubles19/09/2019 15:15:00
New money mule warning issued by Barclays.
Helen Skelton reveals that she lost £70,000 following bank scam call10/09/2019 10:20:00
TV and radio presenter Helen Skelton has revealed that she was scammed out of her savings after falling victim to fraudsters over the phone.
Fraudster jailed and ordered to pay back money following reports made to Action Fraud06/09/2019 10:20:00
A fraudster who conned his victims into paying thousands of pounds for deposits for rental properties, has been jailed and ordered to pay back the money he stole following reports made to Action Fraud.