Ex-Uber CISO Advocates ‘Personal Incident Response Plan’ for Security Execs>
Dark Reading – Dan Raywood
[Dan Raywood, Senior Editor, Dark Reading](/author/dan-raywood)
December 12, 2023
BLACK HAT EUROPE 2023 – London – Former Uber CISO Joe Sullivan last week shared new details about the
2016 data breach at the company that led to his firing from Uber and, later, felony charges.After the attackers alerted Uber about the breach and before Uber notified the authorities, the attackers were paid a $100,000 settlement — which Sullivan characterized as
a bug bounty, where the attackers signed a nondisclosure agreement (NDA) about the incident.Sullivan’s lawyers
made the case that Sullivan issued the payment to the hackers with the full knowledge and blessing of Travis Kalanick, Uber’s CEO at the time of the breach, as well as that of members of the Uber legal team.
Link: https://www.darkreading.com/cyberattacks-data-breaches/ex-uber-cso-lessons-learned-from-the-breach-and-legal-case