E Point Perfect
Law \ Legal

Former Uber Security Chief Found Guilty in Criminal Trial for Failure to Disclose Breach to FTC


On October 5, 2022, former Uber security chief Joe Sullivan was found guilty by a jury in U.S. federal court for his alleged failure to disclose a breach of Uber customer and driver data to the FTC in the midst of an ongoing FTC investigation into the company. Sullivan was charged with one count of obstructing an FTC investigation and one count of misprision, the act of concealing a felony from authorities.

The government alleged that in 2016, in the midst of an ongoing FTC investigation into Uber for a 2014 data breach, Sullivan learned of a new breach that affected the personal information of more than 57 million Uber customers and drivers. The hackers allegedly demanded a ransom of at least $100,000 from Uber. Instead of reporting the new breach to the FTC, Sullivan and his team allegedly paid the ransom and had the hackers sign a nondisclosure agreement. Sullivan also allegedly did not report the breach to Uber’s General Counsel.  Uber did not publicly disclose the incident or inform the FTC of the incident until 2017, when Uber’s new chief executive, Dara Khosrowshahi, joined the company.

This case is significant because it represents the first time a company executive has faced criminal prosecution related to the handling of a data breach.


Source link

Related posts

U.S. House Committee on Financial Services to Hold Hearing on FTX; CEO John J. Ray’s Prepared Remarks Available Online.

Colorado AG Publishes Draft Privacy Rules

The Justice System Is Based Upon Discovering The True Facts.

Fourth Circuit: Company Manifested Intent to be Bound by CBA and Is Subject to Exit Contributions under ERISA

Surviving Rule 12(b)(6) Motion Does Could Still Lead to Sanctions Under Bankruptcy Rule 9011

IDR Payment Disputes are Far Outpacing Projections, Creating Backlogs