Canada’s Office of the Privacy Commissioner has asked Uber for more information about how a massive security breach that saw hackers steal personal information from millions has affected Canadians, but said Wednesday it has not yet opened a formal investigation.
Uber revealed on Tuesday that hackers accessed user data stored on a third-party cloud-based service more than a year ago and downloaded personal information — including names, email addresses and phone numbers — from 57 million users. The hackers also stole names and driver’s licence numbers from about 600,000 U.S. drivers. The company said it has let go of two employees who led the response to the hack.
The hack is also a sign that corporations are not adequately protecting private customer information, said Daniel Tobok, a cyber security expert and chief executive officer of Cypfer Inc.
“We as consumers are really the ones that, in the end, are affected by this because the corporations that have our information in databases are not doing enough to protect our data,” he said. “This is literally negligence. These are things that could be prevented. That’s the problem.”