The ride-hail company has fired two people who were in charge of handling the response to this hack.
Uber failed to notify some 57 million users that their data — including names, email addresses, phone numbers and driver’s license numbers — was exposed when hackers accessed that information in 2016, newly minted CEO Dara Khosrowshahi said in a statement on Tuesday.
As a result of the failure to notify its customers, Khosrowshahi opened an investigation into how the company handled the incident and fired two people who handled the response process.
Joe Sullivan, Uber’s chief security officer, was one of them. He was hired in 2015 as Uber’s first security chief after the company had suffered a series of hacks. The attack that occurred under Sullivan’s watch is likely the largest data breach the embattled ride-hailing giant has experienced.
Bloomberg News first reported the hack. Instead of notifying users, Uber paid the hackers $100,000 to delete the data they got ahold of and keep the hack quiet.