Another data breach has been discovered, and this time it’s not a social media website, but ridesharing app Careem.
If you are an avid user of this app, and 14 million of you are in the Middle East, North Africa, Pakistan and Turkey, you may well be surprised to find out that its security is less than optimal.
Who is affected?
The cyber attack on January 14 resulted in the theft of personal data of up to 14 million people from the Middle East, North Africa, Pakistan and Turkey.
Careem said it successfully identified and secured the source of the breach and has now strengthened its network defenses.
The RTA, which uses Careem’s ride-hailing app for its taxis, is not affected by the attack, as it does not share any of its drivers’ data with the company.
According to the UAE Telecommunications Regulations Authority, hackers targeted 34 websites in January, including eight data breaches.
“We are working with law enforcement agencies,” said Careem.
What was stolen?
Customers’ names, email addresses, phone numbers and trip data were stolen during the breach. As per Careem, no credit card information was stolen
The company apologized for the breach, adding that it remains “dedicated to our mission of supporting the millions of drivers and customers in the region who depend on Careem to earn a living and get around.”
How are they are fixing it?
Careem is urging customers to implement good password management by updating account passwords and remaining cautious of any communications that ask for personal information.
“Careem understands the importance of your privacy,” Careem adds.
“We regularly review and update our security systems – this time it wasn’t enough to prevent an attack. While no organization is completely immune to the threat of cybercrime, we are committed to meeting these threats and protecting the privacy and data of those that have placed their trust in us.”