Uber will pay $148 million and tighten its data security after they failed for a year to notify drivers that hackers had stolen their personal information, according to a settlement announced on Wednesday by Illinois Attorney General Lisa Madigan.
Madigan says “Companies cannot hide when they break the law.”
Uber reached the agreement with all 50 USA states and the District of Columbia after a massive data breach in 2016. Instead of reporting it, Uber hid evidence of the theft and paid ransom to ensure the data wouldn’t be misused.
They learned in November 2016 that hackers had accessed personal data, including driver’s license information, for roughly 600,000 Uber drivers in America. The company acknowledged the breach in November 2017, saying it paid $100,000 in ransom for the stolen information to be destroyed.