Malicious Life Podcast: What Happened at Uber?

This report recounts the 2016 Uber breach where two external attackers stole data for ~57M users and ~7M drivers; Uber paid $100,000 in Bitcoin and attempted to conceal the incident as a vulnerability disclosure. It details the timeline, identification of the hackers, internal decisions at Uber, the DOJ prosecution and conviction of former CISO Joe Sullivan, and the ensuing industry debate about disclosure, bug-bounty programs, and CISO liability.