Careem, the Middle East-based ride sharing platform have confirmed a security breach and data of 14 million customers and drivers has been stolen.
Careem mainly operates in the Middle East, South Asia and North Africa which includes 80 cities in 13 countries.
The breach was revealed in a blog post by the company, and the stolen data includes Customers’ name, email address, phone number and trip data.
“On January 14th of this year, we became aware that online criminals gained access to our computer systems which hold customer and captain account data. Customers and captains who have signed up with us since that date are not affected.” said in the blog post published by company
The company also said customers password and credit card details were not compromised in the breach since it was kept on an external third-party PCI-compliant server.
The investigation is still ongoing, and the company said that they are working with cybersecurity experts and law enforcement agencies to find out more about the breach.
Customers who signed in the platform after January 14, 2018, were not affected by breach said the company.
Customers were advised change their passwords in Careem as well as in other accounts if you use the same details.
Customers were also advised not to click or download any attachment from unknown emails and review your bank transactions for any suspicious activity and contact the bank if any.
“Careem understands the importance of your privacy. We regularly review and update our security systems – this time it wasn’t enough to prevent an attack. While no organisation is completely immune to the threat of cybercrime, we are committed to meeting these threats and protecting the privacy and data of those that have placed their trust in us.”
In November 2017 ride sharing platform Uber also suffered a massive breach in which hackers stole personal details of 57 million customers and drivers.