• About Us
  • Contact
  • Careers
  • Send Us a Tip
Menu
  • About Us
  • Contact
  • Careers
  • Send Us a Tip
CyberNews logo
Newsletter
  • Home
  • News
  • Editorial
  • Security
  • Privacy
  • Resources
Menu
  • Home
  • News
  • Editorial
  • Security
  • Privacy
  • Resources
CyberNews logo

Home » Security » Cybersecurity in the sharing economy

Cybersecurity in the sharing economy

by Emma Woollacott
15 September 2020
in Security
0
Cybersecurity in the sharing economy
31
SHARES

Uber’s failure to report a massive data breach in 2016 has, ironically, focused far more attention on the incident than it would probably otherwise have received.

A hacker accessed and downloaded a database held in a private Github account containing personally identifying information associated with around 57 million Uber users and drivers, including around 600,000 drivers’ license numbers.

However, rather than disclosing the breach, the company paid the hacker $100,000 through its bug bounty program to delete the data and stay quiet.

In 2017, Uber paid $148 million to settle the investigation.

However, the saga didn’t end there, and the US Department of Justice has now charged Uber’s former chief security officer, Joseph Sullivan, with obstruction of justice.

Risky business

The breach has highlighted some of the problems that large gig economy companies face. 

In the case of Uber, says Paul Bischoff, privacy advocate at consumer website Comparitech.com, “Although Uber takes some precautions such as driver’s license scans and background checks, drivers can still share their vehicles and accounts. Uber’s non-driver employees never physically meet or interact with the vast majority of drivers.”

The sharing economy is growing rapidly, with the US sector alone projected to reach $455.2 billion by 2023, employing around 57 million people. In many cases, workers are accessing networks from personal devices that lack standard enterprise-level security.

“The variety of devices used by independent contractors can create a management nightmare,” says Morgan Wright, chief security advisor at endpoint security software firm SentinelOne. 

“The end user and eventual customer must rely on the security of the platform, the billing system and a host of other services that are outside their control.”

According to research from security software firm CyberArk, 90% of organisations allow third party vendors access to their critical systems, and 72% put third party access in their top ten security risks. 

“As is apparent, the problem is widespread, and the risk is broadly understood. However, it is not being acted upon,” says David Higgins, EMEA technical director at CyberArk. 

“The majority of organisations use approaches that are just not optimised for efficiency, and don’t consistently apply corporate security policies across on-premises and cloud resources. Any solution for third party privileged access must have basic security best practices that mirror established policies for internal workers.”

Multiple solutions required

Dave Waterson, CEO at security software company SentryBay warns that multiple solutions will almost certainly be needed.

“If standard anti-virus and endpoint detection and response are already in place, subsequent protections based on containerisation, anti-keylogging and anti-screen scraping should be implemented as standard, and they must be complementary and compatible,” he says. 

As the worldwide coronavirus epidemic continues, gig working is on the rise. 

Retailers large and small, for example, are taking on huge numbers of delivery drivers, couriers and warehouse workers.

For those finding themselves moving into the gig economy, says Sam Curry, chief security officer at security firm Cybereason, “Start with what you allow remote today, make sure you know the threat landscape and your business and talk, role-by-role, about what can be done in the short-term gig economy and what can’t; and involve security, HR and legal early and often as the gig worker environment evolves.”

Share31TweetShareShare

Related Posts

Nohow International leaks sensitive worker data

12,000+ workers’ IDs, banking details, and other personal data leaked by UK staffing agency

19 January 2021
Telegram app on mobile

Watch out: there’s a new Telegram scam about

15 January 2021
Email icon on laptop screen

How phishing attacks are evolving and why you should care

14 January 2021
Ransom message on laptop screen

Why ransomware attacks will explode in 2021

12 January 2021
Next Post
Server rack with blue and red internet patch cord cables connected to black patch panel in data server room stock photo

Monitoring tool abused to spy on victims’ cloud infrastructure

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

I agree to the Terms & Conditions and Privacy Policy.

Popular News

  • 70TB of Parler users’ messages, videos, and posts leaked by security researchers

    70TB of Parler users’ messages, videos, and posts leaked by security researchers

    82912 shares
    Share 82901 Tweet 0
  • ProtonMail review: have we found the most secure email provider in 2021?

    61 shares
    Share 61 Tweet 0
  • Bitwarden Review

    0 shares
    Share 0 Tweet 0
  • The ultimate guide to safe and anonymous online payment methods in 2021

    13 shares
    Share 13 Tweet 0
  • Custom mechanical keyboards – 17 coolest ones we’ve ever seen

    442 shares
    Share 441 Tweet 0
Facebook says some users facing issues with Messenger, Instagram

Factbox: How Facebook, Twitter, and others are girding for inauguration threats

20 January 2021
Uploading on mobile screen and Data Protection on desktop screen

Privacy and data protection trends in 2021

20 January 2021
valve logo

EU hits game distributor Valve, five others with 7.8 million euro fine

20 January 2021
google logo

Trump pardons former Google self-driving car engineer Levandowski

20 January 2021
Malwarebytes hacked by state actors behind SolarWinds attack

Malwarebytes hacked by state actors behind SolarWinds attack

20 January 2021
Edvardas Šileris

Head of Europol’s European Cybercrime Centre: there are no systems that cannot be breached

20 January 2021
Newsletter

Subscribe for security tips and CyberNews updates.

Email address is required. Provided email address is not valid. You have been successfully subscribed to our newsletter!
Categories
  • News
  • Editorial
  • Security
  • Privacy
  • Resources
  • VPNs
  • Password Managers
  • Secure Email Providers
  • Antivirus Software Reviews
Tools
  • Personal data leak checker
  • Strong password generator
About Us

We aim to provide you with the latest tech news, product reviews, and analysis that should guide you through the ever-expanding land of technology.

Careers

We are hiring.

  • About Us
  • Contact
  • Send Us a Tip
  • Privacy Policy
  • Terms & Conditions
  • Vulnerability Disclosure

© 2021 CyberNews

This website uses cookies. By continuing to use this website you are giving consent to cookies being used. Visit our Privacy Policy.

Home

News

Editorial

Security

Privacy

Resources

  • In the News
  • Contact
  • Careers
  • Send Us a Tip

© 2020 CyberNews – Latest tech news, product reviews, and analyses.

Subscribe for Security Tips and CyberNews Updates
Email address is required. Provided email address is not valid. You have been successfully subscribed to our newsletter!