Careem, the Dubai based ride-hailing company had the data of its millions of users stolen as a result of a cyber attack in January, the company revealed in a blog post.
According to Careem, on 14th January the company became aware of a data breach where the hackers gained access to their computer systems which holds the account data of customers and captains.
At the time of the cyber attack, the company had 14 million customers and 558,000 drivers on its platform operating in 78 cities across the region, a spokesperson revealed to Reuters. The users who have signed up after the said date are not affected by the breach.
The stolen data includes passengers’ names, email address, phone number, and trip data. There is no evidence that the password and credit card numbers have been stolen by hackers. “Customers’ credit card information is kept on an external third-party PCP-compliant server,” says Careem.
The company is working with cybersecurity experts and law enforcement agencies after the incident. Careem has advised their customers to:
- Update/change Careem’s password and of any other account if you have used the same password anywhere else
- Stay cautious of any communication/ link to a web page that asks them for personal information
- Review bank statements for credit cards and keep an eye out for any suspicious transaction
It is quite troubling news given the fact that the ride-hailing company has operations in 13 countries and in over 90 cities.