(Reuters) — Uber Technologies Inc. said on Thursday it was investigating a cybersecurity incident, following a report that its network had been breached, forcing the company to shut down several internal communications and technical systems.
A hacker compromised an employee’s account on the workplace messaging app Slack and used it to send a message to Uber employees notifying them that the company had suffered a data breach, according to a New York Times report on Thursday that cited an Uber spokesman.
Cybersecurity has been an issue for Uber in the past. It suffered a significant hack in 2016 that exposed personal information about about 57 million of its customers and drivers.
Shares in the ride-hailing company fell 5% on Friday, amid broader U.S. market declines.
It appeared the hacker was able to gain access to other internal systems by posting an explicit photo on an internal employee information page, the Times report said.
“We are in contact with law enforcement and will post additional updates here as they become available,”; Uber said in a tweet, without providing further details.
Uber employees were instructed not to use Slack, which is owned by Salesforce Inc., according to the report. Other internal systems were also unavailable.
Slack said in a statement to Reuters that the company was investigating the incident and that there was no evidence of a vulnerability inherent in its platform.