网约车服务公司优步已同意支付1.48亿美元,对其隐瞒大量数据被盗事件的指控做出庭外和解,这些数据暴露了司机和客户的个人信息。
优步在2016年11月就了解到黑客已入侵大约600,000名优步司机的个人数据,包括他们的驾驶执照号码。黑客还窃取了全球5700万名优步乘客的电子邮件地址和手机号码。
这一诉讼在美国各州和哥伦比亚特区都立了案。指控称事发后,优步没有通知有关司机,而是将他们个人信息被盗一事隐藏了一年多,并因担心数据被滥用而支付了赎金。
伊利诺伊州总检查长对美联社表示,“这是在通知用户方面我们见过的最令人震惊的案件之一。长达一年的延迟是不可原谅的。”
优步的首席法律代表托尼·韦斯特表示,公司在进行重大管理层变动之后才决定对黑客袭击事件坦白承认。他说,“这体现了我们今天业务经营的原则:透明、诚信和负责任。”
庭外和解的金额将根据各州司机人数分配。估计大多数州受影响的优步司机每人将获得约100美元。
The ride-hailing service Uber has agreed to pay $148 million to settle claims that it concealed a massive data breach that exposed personal information of drivers and customers.
In November 2016, Uber learned that hackers had accessed personal data of about 600,000 Uber drivers, including their driver’s license numbers. Hackers also had stolen email addresses and cellphone numbers of 57 million riders worldwide.
The claims, filed in every U.S. state and the District of Columbia, said rather than inform the drivers involved, Uber hid the breach for more than a year and paid ransom to ensure the data wouldn’t be misused.
“This is one of the most egregious cases we’ve ever seen in terms of notification; a yearlong delay is just inexcusable,” Illinois Attorney General Lisa Madigan told The Associated Press.
Uber’s chief legal officer, Tony West, said the decision to come clean about the hack was made after major management changes at the company.
“It embodies the principles by which we are running our business today: transparency, integrity and accountability,” West said.
Each state will receive a part of the settlement based on how many drivers they have. Most states estimate each affected Uber driver will receive about $100.