New York (AP) – New York’s state Attorney General has opened an investigation into a massive data breach at Uber.
Amy Spitalnick, spokeswoman for Attorney General Eric Schneiderman, confirmed the probe Wednesday, but would not comment further.
New York law requires that companies notify the Attorney General and consumers if data is stolen.
On Tuesday, Uber acknowledged that it covered up a year-old hacking attack that stole personal information about more than 57 million of the ride-hailing service’s customers and drivers.
So far, there’s no evidence that the data taken has been misused, according to a Tuesday blog post by new Uber CEO Dara Khosrowshahi. Part of the reason nothing malicious has happened is because Uber acknowledges paying the hackers $100,000 to destroy the stolen information.
Dallas area attorney and cyber security expert Shawn Tuma says he’s not surprised by what Uber reportedly did. He says he gets calls all the time from companies who don’t want to do the right thing by reporting a data breach to the public. He suspects there are many more companies out there that have covered up security breaches.