The breach occurred due to a failure to secure credentials on a Github site used by engineers. This was then leveraged using stolen privileges to gain access to Amazon AWS instances that support Uber. An archive file was then compromised containing the data.