Dubai-based ride hailing company Careem has suffered a major data breach that could have seen the personal data of millions of customers stolen, the company confirmed on Monday. The information comes after nearly four months of the actual hack, which the company says happened on January 14, 2018.
Personal data including the customers' name, email address, phone number and trip data has been hacked.
We also want to share with you the actions we're taking to address the issue and to prevent it from happening in the future.
Careem, one of the region's most most prominent start-ups, said that as soon as it had detected the breach, it launched a thorough investigation and engaged leading cybersecurity experts to assist us in strengthening our security systems.
Raheela Sarwar, who works in a bank and extensively used the services of Careem, said she was anxious about the misue of her personal data.
In the official statement, they have assured their commitment to protecting customer's privacy and data.
Carrying out the research for a Pakistan security firm at the time, the company posted a blog on its website as well as its accompanying Facebook page on June 16, 2017 informing the public of the hack, titled: "Researcher saved Careem from 1.4 million users data breach".
Careem is urging customers to implement good password management by updating account passwords and remaining cautious of any communications that ask for personal information.
Careem understands the importance of your privacy. "While no organization is completely immune to the threat of cybercrime, we are committed to meeting these threats and protecting the privacy and data of those that have placed their trust in us".
The company apologized to its users, saying it "has learned from this experience and will come out of it a stronger and more resilient organization".
Services remained in operation in over 90 cities as Careem worked with cyber security experts and law enforcement agencies on the matter, the company added. "A PCP server uses highly secure protocols and is employed by global banks around the globe to protect financial information", according to a statement. We wanted to ensure we had the most accurate information first. Customers and captains who have signed up with us since that date are not affected. "We do our best to respond to each individual, and we are actively reviewing our process to see how we can work better with this incredibly helpful community".