From their blog: Careem has identified a cyber incident involving unauthorised access to the system we exercise to store data. While we have seen no evidence of fraud or misuse related to this incident, it is our responsibility to be open and honest with you, and to reaffirm our allegiance to protecting your privateness and data.
We also want to apportion with you the actions were taking to destination the egress and to prevent it from occurrence in the future.
WHAT HAPPENED
On january 14th of this year, we became aware that online criminals gained access to our computer systems which make customer and headwaiter account data. Customers and captains who make signed up with us since that date are not affected.
WHAT WE ARE DOING
As soon as we detected the hack, we launched a thorough investigation and engaged lead cybersecurity experts to assist us in strengthening our security systems. We are also working with law enforcement agencies.
Throughout the incident, our priority has been to protect the data and privateness of our customers and captains. Since discovering the issue, we have worked to understand what happened, who was affected, and what we needed to doh to strengthen our network defences.
WHAT YOU can DO
Alongside the work we are doing to further strengthen our security systems, customers can follow these steps to safeguard their own personal information:
Implement good password management by updating your Careem password, as well as other accounts on which you use similar details. use a strong admixture of characters, and seek not to employment the same password for multiple sites.
Remain cautious of any unsolicited communications that expect for personal information or refer to a web varlet asking for personal information
Avoid clicking on links or downloading attachments from unfamiliar emails
Continue to refresh cant account and credit card statements for suspicious activity if you see anything unexpected, call your bank
MOVING FORWARD
Careem understands the importance of your privacy. We regularly review and update our certificate systems this time it wasnt enough to keep an attack. while no constitution is completely immune to the terror of cybercrime, we are committed to meeting these threats and protecting the privacy and data of those that get placed their trust in us.
We apologise for what has happened but rest assured, Careem has learned from this experience and will come out of it a stronger and more resilient organisation. We stay dedicated to our mission of supporting the millions of captains and customers in the region who depend on Careem to earn a living and get around.
If you have any further questions, email our team at [email protected].
Our services are very much in operation and we look forward to your next Careem.
About HackNotice and Careem
HackNotice is a service that notices trends and patterns in publically available data so as to identify possible data breaches, leaks, hacks, and other data incidents on behalf of our clients. HackNotice monitors data streams related to breaches, leaks, and hacks and Careem was reported by one of those streams. HackNotice may also have the breach date, hack date, the hacker responsible, the hacked industry, the hacked location, and any other parts of the hack, breach, or leak that HackNotice can report on for the consumers of our product.
If you are a user of Careem their products, services, websites, or applications and you were a client of HackNotice, monitoring for Careem you may have been alerted to this report about Careem . HackNotice is a service that provides data, information, and monitoring that helps our clients recover from and remediate data breaches, hacks, and leaks of their personal information. HackNotice provides a service that helps our clients know what to do about a hack, breach, or leak of their information.
If Careem had a breach of consumer data or a data leak, then there may live additional actions that our clients should read to protect their digital identity. data breaches, hacks, and leaks often conduct to and cause identity theft, account submit overs, ransomware, spyware, extortion, and malware. account takeovers are often caused by credential reuse, password reuse, easily guessed passwords, and are facilitated by the sharing of billions of credentials and other customer information through data leaks, as the direct result of data breaches and hacks.
HackNotice monitors trends in publically available data that indicates tens of thousands of data breaches each year, along with billions of records from data leaks each year. On behalf of our clients, HackNotice works to monitor for hacks that track to depress client security and digital identities that hold been exposed and should be considered vulnerable to attack. HackNotice workings with clients to identify the extent that digital identities hold been exposed and provides remediation suggestions for how to handle each type of exposure.
HackNotice monitors the hacker community, which is a network of individuals that part data breaches, hacks, leaks, malware, spyware, ransomware, and many other tools that are often used for financial fraud, account take overs, and further breaches and hacks. HackNotice monitors the hacker community specifically for breaches, hacks, and data leaks that hurt consumers. HackNotice applies industry specific knowledge and advanced surety practices to monitor for trends that indicate breaches, hacks, and exposed digital identities.
HackNotice also enables clients to share drudge notices with their friend, family, and collogues to help increase cognisance around alleged hacks, breaches, or data leaks. HackNotice workings to ply clients with sharable reports to help increase the security of our clients personal network. The security of the people that our clients interact with directly impacts the level of surety of our clients. Increased photograph to accounts that hold been taken over by hackers leads to further account take overs through phishing, malware, and other attach techniques.
If you found this cut notice to live helpful, then you may be interested in reading some additional jade notices such as:
partly because it allows the owner of the data to place data according to importance and devote better high percent of attempts, ultimately a motivated attacker will likely find a way into any presumption nntly not actually exposed.
Many jurisdictions have passed data breach notification laws, requir