My Uber Account Hacked by Russians - What Do I Do?

churchado on 07/07/2017 - 09:41
Last edited 09/07/2017 - 09:02 by 1 other user

I got a couple of strange texts last night from Uber with confirmation codes. Thought to myself that it looks like someone is trying to hack my account but felt safe in the knowledge that the code was coming to my phone and no one could access it.

Anyway, today, sure enough there are four new transactions on my Paypal from Uber in Russian currency which add up to a few hundred Australian dollars.

Went straight to my Uber app to fix it but the app was like I had never signed in. I tried to sign in with my mobile number and was sent a confirmation code by text. Punched that in and got a message that this phone is already authorised. Then I went to Uber website and tried to login and got a message that my email address is not registered.

Tried finding an UBer phone number…can't find it. Found an Uber support email address on their website and sent them a message - got an auto-response email saying this email address does not receive inquiries. WTF?

Finally managed to send a message through "my password reset link won't work". No response an hour later.

Then I thought I'll try to unlink my Paypal. Can't close Paypal acocunt as there are pending transactions (being the $1.00 Uber ones made by the hackers). Can't unlink my bank accounts due to the same issue.

A bit worried I am going to have a few doqen more transactions coming through before anyone gets back to me.

Travel

Related Stores

Uber
Uber

Comments

  • altomic on 07/07/2017 - 09:49
    +2

    Bikies

    • outlander on 09/07/2017 - 11:12
      +4

      I fail to see how a few biscuits will solve this one mate

    • Plug on 09/07/2017 - 12:32
      -1

      idiot

  • Banana on 07/07/2017 - 09:53
    +5

    Have you try contacting Paypal?
    https://www.paypal.com/gb/selfhelp/article/How-can-I-report-…

  • Lando on 07/07/2017 - 09:53
    +12

    Call paypal. Ask them to chargeback or cancel e-cheque of all the transactions.

    Then call uber and shut down the account.

    Simples.

    • jv on 07/07/2017 - 21:56
      +3

      Then call uber

      lol

      • 0p on 09/07/2017 - 01:48

        Then call uber

        13 UBER

        Listen to poor souls from "uber consultancy".

      • Lando on 10/07/2017 - 09:13

        lol i get it

        I don't use Uber

  • [Deactivated] on 07/07/2017 - 10:00
    +1

    Hi,

    Is your phone rooted by any chance? anyway, either your phone or your email account is compromised,
    to be safe change p/w now and reset your phone or replace it.

    This is not really a sophisticated attack but made worse by the whole uselessness of uber and paypal support.

    First try to inform your bank that you have no control over paypal and ask for transactions to be temp blocked till resolved. idk if they can, worth a try.

    Then call paypal number and inform them what happened, then followed by figuring out how to contact Uber.
    Probably the easiest way is through social media, Twitter, fb, etc.

  • mick123 on 07/07/2017 - 10:02
    +12

    hacked by russians….quick.. call CNN

  • churchado on 07/07/2017 - 10:06

    I have flagged all transactions on Paypal but I'm not sure they can help as it has come from Uber genuinely.

    Just messaged Uber on Facebook. We'll see how that goes.

    • [Deactivated] on 09/07/2017 - 10:41

      this is what Paypal disputes is for… you'll be fine.

  • marcusv on 07/07/2017 - 10:10
    +6

    This podcast may interest you - https://gimletmedia.com/episode/91-the-russian-passenger/

    • twinbag on 07/07/2017 - 11:35
      +4

      interesting.

      In short, if you use the same username and password for different sites, it only takes one of those sites to be hacked and all your accounts are compromised.

      You can check if your email is in some known data breaches at https://haveibeenpwned.com/

      • garetz on 07/07/2017 - 12:26
        +2

        you would have to be very stupid to use the same password for all your different accounts.

        • airzone on 07/07/2017 - 17:24
          +3

          Most people do.

    • churchado on 07/07/2017 - 12:04

      Very interesting. Not sure of their final theory though - re malware on a device being the way in as my devices aren't showing any suspicious activity.

      • moph on 07/07/2017 - 12:31

        There's a follow up episode where they discount this theory. It was simply a matter of being phished.

  • jaackyy on 07/07/2017 - 10:48
    -5

    definitely Bikies.

  • churchado on 07/07/2017 - 10:53
    +3

    Spoke to bank - blocked debits from Paypal to my bank account. Can't block my AMEX (the Paypal back up account) unless I cancel and reissue card.

    Spoke to Paypal - They may or may not (It's not clear) have blocked the auto link between Uber and PayPal but have at least flagged the current fraud transactions

    Uber responded on Facebook - "We take these issues very seriously. Contact us at blah" which was their support page. Sent a message to support. Still waiting for a a response.

  • Diji1 on 07/07/2017 - 10:57
    -8

    You can't expect security from a business that has never made a profit and is losing hundreds of millions every year.

    Hell you can't expect security from successful businesses let alone failing ones like Uber.

    • Cluster on 07/07/2017 - 11:44
      +4

      You've set a very low bar for your expectations, coupled with a large dose of cynicism.

      • ronnknee on 07/07/2017 - 14:00
        +4

        Haven't you heard? He's the new jv.

        • Cluster on 07/07/2017 - 14:10
          +8

          We need another JV? Oh dear

        • [Deactivated] on 07/07/2017 - 14:24
          +11

          @Cluster:

          we don't even need the first one

        • Kangal on 07/07/2017 - 14:42
          -4

          @terminal2k:
          Let's see if we can get him to -50 downvotes….

        • whooah1979 on 07/07/2017 - 15:21
          +1

          He's the new jv.

          where is jv? holiday?

        • jv on 07/07/2017 - 22:00
          +1

          @terminal2k:

          we don't even need the first one

          3 posts in 6 years… hypocrisy much ?

        • jv on 07/07/2017 - 22:00
          +2

          @whooah1979:

          holiday?

          always.

        • gimli on 09/07/2017 - 07:51

          @jv: where's the hipocrisy?

  • boomramada on 07/07/2017 - 11:06
    -8

    whats with people these days, issues with a business, first point of contact forum?? seriously.
    Having issues with a business, google their name, look for contact details, calls them!!?? how hard that could be?

    • Baysew on 07/07/2017 - 11:16
      +5

      how hard that could be?

      OP is asking for help - can't get phone number for Uber.

      Tried finding an UBer phone number…can't find it.

      • boomramada on 07/07/2017 - 11:28
        -3

        Well, when you google "uber phone contact" you will find out uber don't have a contact number,
        I would email them, and email/call paypal as well.
        I don't think people in ozbagain have back door way of getting ubar phone number other than googling it:)

        • Baysew on 07/07/2017 - 11:31
          +3

          OP has already tried -

          Found an Uber support email address on their website and sent them a message - got an auto-response email saying this email address does not receive inquiries.

          OP has detailed the steps he has taken, OzBargain wasn't his first point of contact.

          Someone else may have faced a similar issue.

          how hard that could be?

          Harder than you would think, it seems.

    • havebeerbelywillsumo on 07/07/2017 - 11:48
      +8

      Memo boomramada: Reading OP's comment before posting…."how hard that could be?"

  • Rizzler on 07/07/2017 - 11:46
    +1

    Happened to me on the weekend too!……i cancelled the booking before they were able to charge. No idea how they got my details…..iPhone user..

  • idonotknowwhy on 07/07/2017 - 13:08
    +18

    You guys probably got owned due to password re-use.
    Here are some tips (I have a security major) to stay safe online.

    1. See if your email address(s) have been pwned
      https://haveibeenpwned.com

    2. Download and use this:
      https://www.keepassx.org

    - Create a secure passphrase (https://www.pwnieexpress.com/blog/creating-strong-passphrase…) and set it as your master password.
    - Generate a unique password for every site, one that you don't know
    3. Go and update your passwords for every website to something generated by KeepassX
    4. Get a Dropbox account, and store your .kdbx file there. (Don't worry, it's encrypted, you're not going to get hacked this way)
    5. Download the Keepass apps for Android/iOS/WP10. You now have all your passwords on the go, in sync.

    Extra Credit:
    1. Get a fastmail.com account ($5 / month) and register your own domain.
    2. Create a separate "Alias" for every website.
    - No need to remember which one goes with which site, because keepass will handle it for you.
    3. Setup forwarding from your current gmail/hotmail/whatever.

    This has the following advantages:
    1. You can change email providers whenever you want, without changing email addresses.
    2. You can register multiple accounts easily to take advantage of certain deals here :)
    3. If one of your addresses starts getting spammed, you can tell which service has just been hacked :)
    4. If you buy from a spammy store like gearbest, you can delete the alias after, rather than begging them not to spam you

    Also, where possible, enable 2-factor authentication which allows it.
    You usually get 2 options, and here are the advantages of each of them:
    Google Authenticator app:
    -> works when overseas, since you don't need a mobile number to receive codes
    -> it's more secure (social engineering attacks on telcos, date-of-birth authentication) than the next option

    SMS via your mobile
    -> You get to see if someone tried to log-in as you, as you'll get the SMS code

  • try2bhelpful on 07/07/2017 - 14:18
    +3

    It sounds like Uber is trying to drive people back to Taxis (pun intended). When things get screwed up these "online" companies make it very difficult to contact them or resolve the issues unless you jump through hoops. OP - Best of luck with your endeavours and thanks for the heads up to others.

  • pikapika on 07/07/2017 - 15:03
    +1

    Crazy Russian Hacker!

    • 0p on 09/07/2017 - 01:56
      +1

      Sаftеч is ицмьея оие ряioгiтч.

  • Paul Atreides on 07/07/2017 - 16:26
    -5

    can you record what happens with a dashcam?

  • jv on 07/07/2017 - 21:53
    -1

    Good luck, because Uber are not going to help you…

    http://www.abc.net.au/triplej/programs/hack/hijacked-uber-ac…

    Maybe next time catch a taxi… :)

    • churchado on 08/07/2017 - 12:19
      +2

      I vowed to never catch a taxi again after being charged $75 from Sydney Airport to Belmore (15 mins drive)

    • jackspratt on 08/07/2017 - 13:12

      Good luck, because Uber are not going to help you…

      Oops ….!

      I had to contact Uber a second time yesterday via Facebook and half an hour later it was all fixed.

      • jv on 08/07/2017 - 14:46
        -1

        Sure you did….

  • churchado on 08/07/2017 - 12:18
    +1

    I had to contact Uber a second time yesterday via Facebook and half an hour later it was all fixed. Annoying they don't have a phone number but at least they finally fixed the issue.

    • jv on 08/07/2017 - 23:15
      +1

      Maybe next time you contact them, ask them how the select their drivers… https://goo.gl/PAsw9c

  • Rhubarb Jones on 08/07/2017 - 23:29
    deleteuber
    • 0p on 09/07/2017 - 02:01

      you dropped this…

      \ ◡ノ(° -°ノ)

      Use that like this…

      "\#deleteuber"

      To produce…

      #deleteuber

      Or like this…

      "#\#deleteuber"

      To produce…

      #deleteuber

      :)
      0p

  • auna on 08/07/2017 - 23:32

    Are you sure it wasn't a 400 pound hacker in his Mums basement?

    • iDroid on 09/07/2017 - 11:01

      Naa, definitely 2 ruble hacker from Russia.

  • l005e on 09/07/2017 - 11:18

    My UBER was hacked by someone in China a few months back and they made a bunch of expensive trips. UBER refunded no issue

  • altomic on 09/07/2017 - 15:31
    +3

    thanks for letting us know.

    I checked my uber account and I had been charged for a fare from the city at 3am this morning which included a half hour stop at some address.

    edit : googled address - it's a kebab place?!?!?!

    edit #2 : my bad, my friends say it was drunk me.

  • rizzzzzle on 09/07/2017 - 15:35

    Mine was also hacked by a russian. Search for 'uber my account has been hacked' and follow the obvious link and make a submission to Uber. Uber had fixed mine up within 24 hours.

  • stevekintor on 29/05/2018 - 20:38

    There's more info in another account here, might be enlightening. It shows the details of what happened and how Uber responded: https://unlikekinds.com/t/your-money-can-be-stolen-from-your…

Login or Join to leave a comment
Login Join