• About
  • Team
  • Advertise
  • Terms
  • Privacy Policy
  • Contact
Thursday, March 4, 2021
INCPak
  • World
  • National
    • Islamabad
    • Azad Kashmir
    • Balochistan
    • Khyber Pakhtunkhwa
    • Gilgit Baltistan
    • Sindh
    • Punjab
    • FATA
  • Health
  • Automotive
  • Technology
    • Tech News
    • Custom Roms
    • Tips & Tricks
    • INCPak Forum
    • Reviews
    • Phone Reviews
    • Crypto
    • Stock ROMs
    • What’s new?
    • Computer Stuff
    • INCPak Roms
  • Education
  • Entertainment
  • More
    • Editorial
    • Information
    • Travel
    • Beauty
    • Food
    • Music
    • Movies
    • Sports
    • Documentaries
    • Personalities
    • History
    • Economy
    • Emergency Numbers
No Result
View All Result
INCPak
No Result
View All Result

Bykea Data Breach Exposes 200GB of Personal User Information

by Ali Gulrez
Jan 29, 2021
in Information, Technology
Reading Time: 7min read
A A
0

The Pakistani ride-hailing and parcel delivery service Bykea suffered a massive data breach that has affected its extensive user database, according to a report published by Safety Detectives.

Bykea Data Breach, Bykea Data Leak, Bykea
Bykea Data Breach Exposes 200GB of Personal User Information.

According to the details, the Safety Detectives cybersecurity team “discovered an elastic server vulnerability during routine IP-address checks on specific ports.”

The team discovered that Bykea suffered a massive data breach exposing all its production server information and allowing access to over 200GB of data containing users’ personal information, including their full names and locations.

Safety Detectives team stated that the “elastic instance” was left publicly exposed whiteout any password protection or encryption and allowed anyone with the server’s IP address to gain access to the Bykea database containing personal information.

In the article, the Safety Detectives team states that Bykea suffered a separate data breach in September 2020, during which unidentified hackers reportedly deleted the company’s entire customer database. However, the company stated that it was unaffected by the intrusion because it kept regular backups.

Bykea Data Breach – What was Leaked?

According to the article, the Bykea data breach exposed API logs for both the company’s web and mobile sites, including production server information. “The 200GB database containing 400 million records was located on a production server that stores regularly updated data including internal logs including user details.” the article stated.

Source: Safety Detectives

The data breach contained personally identifiable information (PII)) for both customers and Bykea drivers aka “partners” or “captains”.

Bykea customer’s PII:

  • Full names
  • Phone numbers
  • Email addresses

Bykea partners’ (drivers’) PII:

  • Full names
  • Phone numbers
  • Address
  • CNIC (Computerized National Identity Card)
  • Driver license numbers, issuing city and expiry dates
  • Body temperature
Users’ full trip details exposed on the server | Source: Safety Detectives

Other information was also left unsecured, such as:

  • Internal API logs
  • Collection and delivery location information
  • User token ID with cookie details and session logs
  • Specific GPS coordinates
  • Vehicle information including model and number plate
  • Driver license expiry information
  • Miscellaneous user device information
  • Encrypted IMEI numbers
Driver details including GPS coordinates | Source: Safety Detectives

The cybersecurity team also discovered that the Bykea data breach contained customer invoices showing complete trip details, including where customers were picked and dropped off, timings and fare details.

Complete trip details. | Source: Safety Detectives

Furthermore, the Bykea data leak also exposed internal employee login and unencrypted password information on the unsecured server.

Employee login information

“Bykea had existing commercial relationships with other Pakistani companies including K-Electric, EasyPaisa and JazzCash allowing customers to pay their electricity bills, get cash and send money with the assistance of a Bykea driver and its app.” the article stated. “This data was also stored on Bykea’s database and exposed in the leak.”

Total Data Leaked

Number of records leaked:400+ million
Number of affected users:Unknown
Size of data breach:200+ gigabytes
Server location:Boydton, United States
Company location:Karachi, Pakistan

Another vulnerability was discovered on 14 November 2020. The cybersecurity team at Safety Detectives informed Bykea regarding the matter on 24 November 2020 and the company patched the database within 24 hours.

It is pertinent to mention that Bykea has not commented on this latest data breach.

Read more: Facebook users’ phone numbers being sold by Telegram Bot.

Follow INCPAK on Facebook / Twitter / Instagram for updates.

ShareTweetPin1
Previous Post

Currency Exchange Rate in Pakistan Today – 29 January 2021

Next Post

You can now transfer chats from WhatsApp to Telegram

Related Posts

​The Norah Simpson scholarship for Postgraduate Studies in the UK
Education

Norah Simpson scholarship for Postgraduate Studies in the UK

by Shazeya Daudpota
Mar 2, 2021
HBL Online Banking website and mobile app is down
Information

HBL Online Banking website and mobile app is down

by FIA
Mar 2, 2021
Study in Canada Scholarships 2021 - 2022 (Apply Online)
Education

Study in Canada Scholarships 2021 – 2022 (Apply Online)

by Shazeya Daudpota
Mar 1, 2021
Generation Google Scholarship for women in computer science 2021-2022
Education

Generation Google Scholarship for women in computer science 2021-2022

by Shazeya Daudpota
Feb 27, 2021
Telenor Pakistan partners with Spotify
Technology

Telenor Pakistan partners with Spotify

by FIA
Feb 24, 2021
Spotify Pakistan, Spotify, Pakistan
Technology

Confirmed: Spotify to launch in Pakistan ‘over next few days’

by Ali Gulrez
Feb 23, 2021
Australia Award Scholarships for Developing Countries 2021/22
Education

Australia Awards Scholarships for Developing Countries 2021/22

by Shazeya Daudpota
Feb 16, 2021
Join Pakistan Air Force as Commissioned Officers (register Online)
Education

Join Pakistan Air Force as Commissioned Officers -register Online

by Shazeya Daudpota
Feb 14, 2021
Next Post
WhatsApp Telegram, WhatsApp to Telegram, Telegram, WhatsApp

You can now transfer chats from WhatsApp to Telegram

Nauman Ali, Pak vs SA

Pak vs SA: Nauman Ali marks first win for Pakistan with his elite balling

Leave a Reply Cancel reply

Your email address will not be published.

Follow us on Twitter

INCPAK Twitter

Latest

  • Ramsha Khan bags the favorite actress award
  • Gold Rate in Pakistan Today – 3 March 2021
  • PSL 6 2021: The Perfect Cricket Anthem by Tahir Abbas We could ask for
  • Currency Exchange Rate in Pakistan Today – 3 March 2021
  • USD to PKR: Dollar rate in Pakistan Today – 3 March 2021
  • Norah Simpson scholarship for Postgraduate Studies in the UK
  • HBL Online Banking website and mobile app is down
  • Sindh Govt lifts restrictions from all commercial activities
  • Mehwish Hayat is my favourite dancer says Mahira Khan

Follow us on Instagram

Qries

USD to PKR Rates

Qries

INCPak Official Logo

Independent News Coverage Pakistan - INCPAK Logo

Independent News Coverage Pakistan - INCPak.com

INCPak Official App - Download from Google Play Store

Vehicle Verification Online App

Vehicle Verification Online App

MTMIS Vehicle Verification Online Pakistan - Download from Google Play Store

Site links

  • About INCPak
  • Advertise with Us
  • Terms and Conditions
  • Privacy Policy
  • INCPak Team Members
  • Cookie Policy
  • Contact INCPak
  • About
  • Team
  • Advertise
  • Terms
  • Privacy Policy
  • Contact

Independent News Coverage Pakistan - All Rights Reserved © 2021
This site is hosted by Evolution Host

  • World
  • National
    • Islamabad
    • Azad Kashmir
    • Balochistan
    • Khyber Pakhtunkhwa
    • Gilgit Baltistan
    • Sindh
    • Punjab
    • FATA
  • Health
  • Automotive
  • Technology
    • Tech News
    • Custom Roms
    • Tips & Tricks
    • INCPak Forum
    • Reviews
    • Phone Reviews
    • Crypto
    • Stock ROMs
    • What’s new?
    • Computer Stuff
    • INCPak Roms
  • Education
  • Entertainment
  • More
    • Editorial
    • Information
    • Travel
    • Beauty
    • Food
    • Music
    • Movies
    • Sports
    • Documentaries
    • Personalities
    • History
    • Economy
    • Emergency Numbers
No Result
View All Result

Independent News Coverage Pakistan - All Rights Reserved © 2021
This site is hosted by Evolution Host

Go to mobile version