In October 2016, Uber experienced a data security incident that resulted in a breach of information related to rider and driver accounts.
For riders, this information included the names, email addresses, and mobile phone numbers related to accounts globally. Our outside forensics experts have not seen any indication that trip location history, credit card numbers, bank account numbers, or dates of birth were downloaded.
In the United States this involved approximately 25.6 million riders and drivers. This is an approximation rather than an accurate and definitive count because sometimes the information we get through the app or our website that we use to assign a country code is not the same as the country where a person actually lives.
When the incident happened, we took immediate steps to secure the data, shut down further unauthorized access, and strengthen our data security.
DO I NEED TO TAKE ANY ACTION?
We do not believe any individual rider needs to take any action. We have seen no evidence of fraud or misuse tied to the incident. We are monitoring the affected accounts and have flagged them for additional fraud protection.
We encourage all our users to regularly monitor their accounts for any issues. Please let us know via the Help Center if you see anything unexpected or unusual related to your Uber account. You can do this by tapping "Help" in your app, then "Account and Payment Options" > "I have an unknown charge" > "I think my account has been hacked".