Careem, the ride-hailing company based in Dubai, revealed that it became the victim of a cyber breach.
The personal data of up to 14 million people in the Middle East, North Africa, Pakistan and Turkey has been stolen by online criminals in a cyber-attack on the systems of Careem.
On January 14, the company detected the breach in the computer systems which hold the account data of customers and captains – or drivers – in 78 cities in 13 countries. Names, email addresses, phone numbers, as well as trip data was stolen.
Hackers accessed the names, email addresses, phone numbers and trip data of anyone who signed up for Careem prior to January 14. Careem said there’s no evidence the hackers accessed passwords or credit card information.
Careem said it became aware of the security incident back in January. Since then, Careem said it has conducted an investigation and strengthened its security systems.
The company waited until now to tell people because “we wanted to make sure we had the most accurate information before notifying people,” the company wrote in a blog post.
“We take the protection of our customers and captains’ data very seriously,” the company wrote. “We have a team of leading cybersecurity experts who have been working with external security firms to constantly monitor our systems, build and enhance our security fences, and react immediately to potential threats. In addition, we are working with law enforcement agencies.”
No fraud or misuse related to the stolen information has been discovered so far by the company, it said.