Uber's Former Security Chief Charged With Trying to Conceal Hack Using Bitcoin

Joseph Sullivan allegedly insisted the hackers sign NDAs in exchange for $100,000 in bitcoin hush money.

AccessTimeIconAug 21, 2020 at 5:50 p.m. UTC
Updated Sep 14, 2021 at 9:46 a.m. UTC
10 Years of Decentralizing the Future
May 29-31, 2024 - Austin, TexasThe biggest and most established global hub for everything crypto, blockchain and Web3.Register Now

A former Uber executive is charged in connection with the company's botched attempt to cover up its massive 2016 security breach with six-figure bitcoin payments and hacker-facing NDAs.

  • Joseph Sullivan, who served as the ride-hailing giant's chief security officer until late 2017, faces obstruction of justice and other felony charges outlined in a criminal complaint filed Thursday in San Francisco Federal District Court.
  • Sullivan allegedly orchestrated a cover-up operation that tried to keep Uber's sprawling 2016 data breach of 57 million riders' and drivers' information under wraps, prosecutors say.
  • Uber attempted to buy two hackers' silence with $100,000 in bitcoin siphoned from its "bug bounty" program, according to the complaint. In addition, Sullivan allegedly insisted the hackers sign non-disclosure agreements (NDA).
  • The hackers got their bitcoin in December 2016 but refused to disclose their identities or sign the NDAs until Sullivan allegedly "dispatched security staff" to hunt them down, according to the indictment. Prosecutors allege Sullivan neglected to tell the Federal Trade Commission about the hack.


Please note that our privacy policy, terms of use, cookies, and do not sell my personal information has been updated.

CoinDesk is an award-winning media outlet that covers the cryptocurrency industry. Its journalists abide by a strict set of editorial policies. In November 2023, CoinDesk was acquired by the Bullish group, owner of Bullish, a regulated, digital assets exchange. The Bullish group is majority-owned by Block.one; both companies have interests in a variety of blockchain and digital asset businesses and significant holdings of digital assets, including bitcoin. CoinDesk operates as an independent subsidiary with an editorial committee to protect journalistic independence. CoinDesk employees, including journalists, may receive options in the Bullish group as part of their compensation.

Learn more about Consensus 2024, CoinDesk's longest-running and most influential event that brings together all sides of crypto, blockchain and Web3. Head to consensus.coindesk.com to register and buy your pass now.