Uber patches security flaw leading to subdomain takeover

The serious vulnerability left the ride-sharing service’s full single sign-on system open to exploit.