British and Dutch authorities fined Uber a combined $1.17 million for a 2016 data breach that exposed the personal details of millions of customers. “The U.K.’s Information Commissioner’s Office (ICO) announced a $491,284 fine against the ride-sharing company for ‘failing to protect customers’ personal information during a cyber attack’ in October and November of 2016,” reports CNBC. “The Dutch Data Protection Authority imposed its own $679,257 penalty for the same incident.” From the report: The 2016 cyberattack allowed hackers to access the personal details, including full names, email addresses and phone numbers, of 2.7 million Uber customers in the U.K. and 174,000 in the Netherlands, authorities said. The U.K.’s ICO said the cyberattack represented a “serious breach” of the country’s Data Protection Act of 1998 by exposing customers and drivers to increased risk of fraud. The Dutch regulator said it was fining Uber because it did not report the breach within the country’s mandated 72-hour window.
In September, Uber agreed to pay $148 million to settle claims related to the 2016 data breach to states across the U.S. and Washington, D.C. In a statement Tuesday, an Uber spokesperson said the company is “pleased to close this chapter on the data incident from 2016.”
Read more of this story at Slashdot.