Careem, a ride-hail Dubai based startup which’s operates in 14 countries, today announced that the hackers stole data belonging to more than 14 million riders and drivers.
In a blog posted on Careem’s website, the Dubai based transportation network said, “Careem has identified a cyber incident involving unauthorized access to the system we use to store data.”
“On January 14 of this year, we became aware that online criminals gained access to our computer systems which hold customer and captain account data. Customers and captains who have signed up with us since that date are not affected,” the blog post read.
Dear Customers, we have identified a cyber incident that took place in January 2018 involving unauthorized access to the system we use to store data. Our wider security protocol keep passwords encrypted and credit card details on a separate system. pic.twitter.com/rkcpf671ct
— Careem (@careem) April 23, 2018
While Careem is busy is conducting investigations and improving its security along with the help of cyber-security experts as it claims, the company has suggested the users follow these steps:
- Implement good password management by updating your Careem password, as well as other accounts on which you use similar details. Use a strong mix of characters, and try not to use the same password for multiple sites.
- Remain cautious of any unsolicited communications that ask for personal information or refer to a web page asking for personal information
- Avoid clicking on links or downloading attachments from unfamiliar emails
- Continue to review bank account and credit card statements for suspicious activity – if you see anything unexpected, call your bank
Careem has apologized to their customers and promised to strengthen their security to properly protect the trusted user data.
But it seems that the Careem’s users are not much forgiving about their personal data and why should they be? Many people have tweeted about the matter showing their lack of trust in these services for the data protection. Most of the public is angry about the company informing the public months after the breach.
For now, Careem has reassured that it has removed the loopholes and vulnerabilities used by the hackers. It is launching an extensive investigation of its system and will be working with “leading cybersecurity experts” and government authorities.