Among all the compromised systems, the previously mentioned stand out, the company's AWS console, various virtual machine management systems, the Google Workspace email account management panel and the Slack server, used for communications with employees.
Uber confirmed the attack and has contacted the relevant authorities to try to clarify the facts. Early indications suggest that part of the attack focused on abusing multi-factor authentication systems. The attacker was sending multiple login requests, and the victim had no choice but to accept. This is known as a fatigue attack (MFA Fatigue Attack), an increasingly used technique.
Uber, more recently, he has accused the band Lapsus$ of the attack, due to the techniques they used for the attack. This attack comes after the attacks on Microsoft, Culm, Samsung, Nvidia… among others.
Sources: Bleeping Computer | HelpNet Security
Image: Dllu, CC BY-SA 4.0, via Wikimedia Commons
