Careem Admits Security Breach Compromising User Data
A massive data breach in cyber security of cab hailing service Careem, has been reported. According to reports and email sent out by Careem the breach affects all customers and captains who signed up with the service before January 14, 2018. Users who signed up with the service after that date have not been affected, said Careem.
Dear Customers, we have identified a cyber incident that took place in January 2018 involving unauthorized access to the system we use to store data. Our wider security protocol keep passwords encrypted and credit card details on a separate system. pic.twitter.com/rkcpf671ct
— Careem (@careem) April 23, 2018
A representative from Careem said that at the time of the data breach, there were about 14 million customers and 558,000 captains active on the system across 13 countries across the globe.
The company reported that sensitive information like customers’ names, email addresses, phone numbers and trip history data (pick-up and drop-off points) had been stolen by hackers and is urging customers to change passwords, bank account details and credit card information. “Customers’ credit card information is kept on an external third-party PCP-compliant server,” the car-hiring giant claims.
Oye Yeah tried reaching out to Junaid Iqbal, CEO Careem Pakistan but however, have not received any reply as yet.