Uber CISO John Flynn testifies before the U.S. Senate subcommittee on Consumer Protection, Product Safety, Insurance and Data Security. He said the company should have notified the public sooner about the breach and that paying off the hackers was wrong. Uber is facing a variety of investigations from regulators in the United States, the Philippines and the Philippines. The average payout for a vulnerability is $500, and the maximum bounty from one company that uses HackerOne is now $250,000, CEO Marten Mickos said.”]
Source: https://www.cuinfosecurity.com/uber-no-justification-for-breach-cover-up-a-10637