Following the news that 50,000 Uber driver names, license numbers exposed in a data breach http://arstechnica.com/business/2015/02/50000-uber-driver-names-license-plate-numbers-exposed-in-a-data-breach/ Ken Westin, security researcher at Tripwire explains why Uber should be commended for how they have handled the breach:
“Even though information may have been compromised in this case, Uber should be commended for having tools in place to detect unauthorized access in the first place. A large number of organizations don’t even have proper logging in place to detect unauthorized access to databases containing sensitive dat. This means that there are a large number of data breaches that occur that have not been detected so the businesses and their customers/partners are not aware their information has been compromised. Uber is also being proactive in their notification to drivers that their information has been compromised which can have a significant impact on decreasing the potential fraud associated with the type of data that was stolen such as driver’s license numbers and personal data. Breaches will happen and it is refreshing to see that companies like Uber are investing in the proper tools to detect unauthorized access and other indicators of compromise.