Get the latest market trends in your inbox
Stay on top of the latest market trends and economic insights with the Axios Markets newsletter. Sign up for free.
Catch up on coronavirus stories and special reports, curated by Mike Allen everyday
Catch up on coronavirus stories and special reports, curated by Mike Allen everyday
Denver news in your inbox
Catch up on the most important stories affecting your hometown with Axios Denver
Des Moines news in your inbox
Catch up on the most important stories affecting your hometown with Axios Des Moines
Minneapolis-St. Paul news in your inbox
Catch up on the most important stories affecting your hometown with Axios Minneapolis-St. Paul
Tampa-St. Petersburg news in your inbox
Catch up on the most important stories affecting your hometown with Axios Tampa-St. Petersburg
An Uber user opens the app on a smartphone. Photo: Kirsty Wigglesworth / AP
Uber paid a 20-year-old man in Florida $100,000 to destroy data from 57 million passengers and 600,000 drivers that he'd stolen in a 2016 breach, Reuters reports, citing sources familiar with the events. Reuters was unable to establish the identity of the hacker.
The backdrop: On Nov. 21, Uber announced that it had paid a hacker to delete stolen data, but did not specify who was paid, or how. The man was paid through a "bug bounty" program companies use to pay hackers to test their software for vulnerabilities, although it appears that the hacker stole the information first and was then retroactively entered into the bug bounty.
It's still not clear who made the decision to pay the hacker and keep the breach quiet. Then-CEO Travis Kalanick is said to have known about the data breach and the payment to the hacker in November 2016, as did chief security officer Joe Sullivan (who was fired last month, following an investigation that first alerted Uber's board to the hack).