• About
  • Team
  • Advertise
  • Terms
  • Privacy Policy
  • Contact
INCPak
  • World
  • National
    • Islamabad
    • Azad Kashmir
    • Balochistan
    • Khyber Pakhtunkhwa
    • Gilgit Baltistan
    • Sindh
    • Punjab
    • FATA
  • Automotive
  • Tech
    • Tech News
    • Custom Roms
    • Tips & Tricks
    • INCPak Roms
    • Reviews
    • Phone Reviews
    • Stock ROMs
    • What’s new?
    • Computer Stuff
  • Business
  • Education
  • Entertainment
  • Information
  • Fashion
  • More
    • Fun Time
      • Kids Corner
      • Poems
      • Stories
    • Health
    • Editorial
    • Travel
    • Beauty
    • Food
    • Music
    • Movies
    • Sports
    • Documentaries
    • Personalities
    • History
    • Economy
    • Emergency Numbers
No Result
View All Result
  • World
  • National
    • Islamabad
    • Azad Kashmir
    • Balochistan
    • Khyber Pakhtunkhwa
    • Gilgit Baltistan
    • Sindh
    • Punjab
    • FATA
  • Automotive
  • Tech
    • Tech News
    • Custom Roms
    • Tips & Tricks
    • INCPak Roms
    • Reviews
    • Phone Reviews
    • Stock ROMs
    • What’s new?
    • Computer Stuff
  • Business
  • Education
  • Entertainment
  • Information
  • Fashion
  • More
    • Fun Time
      • Kids Corner
      • Poems
      • Stories
    • Health
    • Editorial
    • Travel
    • Beauty
    • Food
    • Music
    • Movies
    • Sports
    • Documentaries
    • Personalities
    • History
    • Economy
    • Emergency Numbers
No Result
View All Result
INCPak
No Result
View All Result

Home » Technology » Bykea Data Breach Exposes 200GB of Personal User Information

Bykea Data Breach Exposes 200GB of Personal User Information

by Ali Gulrez
3 years ago
in Information, Technology
0

The Pakistani ride-hailing and parcel delivery service Bykea suffered a massive data breach that has affected its extensive user database, according to a report published by Safety Detectives.

Bykea Data Breach, Bykea Data Leak, Bykea
Bykea Data Breach Exposes 200GB of Personal User Information.

According to the details, the Safety Detectives cybersecurity team “discovered an elastic server vulnerability during routine IP-address checks on specific ports.”

The team discovered that Bykea suffered a massive data breach exposing all its production server information and allowing access to over 200GB of data containing users’ personal information, including their full names and locations.

Safety Detectives team stated that the “elastic instance” was left publicly exposed whiteout any password protection or encryption and allowed anyone with the server’s IP address to gain access to the Bykea database containing personal information.

In the article, the Safety Detectives team states that Bykea suffered a separate data breach in September 2020, during which unidentified hackers reportedly deleted the company’s entire customer database. However, the company stated that it was unaffected by the intrusion because it kept regular backups.

Bykea Data Breach – What was Leaked?

According to the article, the Bykea data breach exposed API logs for both the company’s web and mobile sites, including production server information. “The 200GB database containing 400 million records was located on a production server that stores regularly updated data including internal logs including user details.” the article stated.

Source: Safety Detectives

The data breach contained personally identifiable information (PII)) for both customers and Bykea drivers aka “partners” or “captains”.

Bykea customer’s PII:

  • Full names
  • Phone numbers
  • Email addresses

Bykea partners’ (drivers’) PII:

  • Full names
  • Phone numbers
  • Address
  • CNIC (Computerized National Identity Card)
  • Driver license numbers, issuing city and expiry dates
  • Body temperature
Users’ full trip details exposed on the server | Source: Safety Detectives

Other information was also left unsecured, such as:

  • Internal API logs
  • Collection and delivery location information
  • User token ID with cookie details and session logs
  • Specific GPS coordinates
  • Vehicle information including model and number plate
  • Driver license expiry information
  • Miscellaneous user device information
  • Encrypted IMEI numbers
Driver details including GPS coordinates | Source: Safety Detectives

The cybersecurity team also discovered that the Bykea data breach contained customer invoices showing complete trip details, including where customers were picked and dropped off, timings and fare details.

Complete trip details. | Source: Safety Detectives

Furthermore, the Bykea data leak also exposed internal employee login and unencrypted password information on the unsecured server.

Employee login information

“Bykea had existing commercial relationships with other Pakistani companies including K-Electric, EasyPaisa and JazzCash allowing customers to pay their electricity bills, get cash and send money with the assistance of a Bykea driver and its app.” the article stated. “This data was also stored on Bykea’s database and exposed in the leak.”

Total Data Leaked

Number of records leaked:400+ million
Number of affected users:Unknown
Size of data breach:200+ gigabytes
Server location:Boydton, United States
Company location:Karachi, Pakistan

Another vulnerability was discovered on 14 November 2020. The cybersecurity team at Safety Detectives informed Bykea regarding the matter on 24 November 2020 and the company patched the database within 24 hours.

It is pertinent to mention that Bykea has not commented on this latest data breach.

Read more: Facebook users’ phone numbers being sold by Telegram Bot.

Follow INCPAK on Facebook / Twitter / Instagram for updates.

Tags: BykeaBykea Data BreachBykea Data LeakFeatured
ShareTweetSend
Ali Gulrez

Ali Gulrez

Related Posts

Epic Games Down, Xbox Live Down, Epic Games Outage, Xbox Live Outage, Fortnite Down
Technology

Epic Games, Xbox Live Goes Down After Fortnite’s Big Bang Event

December 3, 2023
Apple Introduces Red Apple Watch Series 9
Technology

Apple Introduces Red Apple Watch Series 9

December 2, 2023
Google Messages, Google Messages Features
Technology

Google Messages Get 11 New Features With Latest Update

December 2, 2023
WhatsApp Status, WhatsApp Status Updates, WhatsApp Status Sharing
Technology

WhatsApp Is Getting Cross-Platform Status Sharing

December 2, 2023
Capcom, Resident Evil, Resident Evil Remakes
Entertainment

Capcom Confirms More Resident Evil Remakes

December 2, 2023
Realme GT5 Pro, Realme GT5 Pro Images
Technology

Realme GT5 Pro Official Images Reveal Phone’s Design

December 2, 2023
WhatsApp Usernames, WhatsApp Username, WhatsApp
Technology

WhatsApp to Introduce Usernames

December 2, 2023
Redmi Note 12 HyperOS, Redmi Note 12 HyperOS Update
Technology

Redmi Note 12 Will Soon Get HyperOS Update

December 2, 2023
Load More

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Latest News

  • Top 10 Best Pakistani Dramas in 2023
  • UAE Public Holidays for 2024 – Complete List of Long Weekends
  • Gold Rate in Dubai UAE Today – 3 December 2023
  • Gold Rate in Pakistan Today – 3 December 2023
  • Gold Rate in Saudi Arabia Today – 3 December 2023
  • Epic Games, Xbox Live Goes Down After Fortnite’s Big Bang Event
  • 7.6 Magnitude Earthquake Jolts Philippines, Tsunami Warning Issued
  • Apple Introduces Red Apple Watch Series 9
  • Google Messages Get 11 New Features With Latest Update
  • WhatsApp Is Getting Cross-Platform Status Sharing

INCPak Official logo

INCPak Official Logo

Download apps

For daily gold rate updates, you can download our apps for Pakistan, United Arab Emirates, and Saudi Arabia (KSA) from the Google Play Store. We provide daily gold rate updates with historical data and a Gold Rate Calculator.

Gold Rate in Pakistan

Trending

  • Petrol Prices in Pakistan
  • USD to PKR Rates
  • MTMIS – Online Vehicle Verification
  • Ehsaas Program
  • Punjab Rozgar Scheme
  • Naya Pakistan Housing Program
  • Mera Pakistan Mera Ghar Loan
  • About
  • Team
  • Advertise
  • Terms
  • Privacy Policy
  • Contact

© 2023 Independent News Coverage Pakistan

No Result
View All Result
  • World
  • National
    • Islamabad
    • Azad Kashmir
    • Balochistan
    • Khyber Pakhtunkhwa
    • Gilgit Baltistan
    • Sindh
    • Punjab
    • FATA
  • Automotive
  • Tech
    • Tech News
    • Custom Roms
    • Tips & Tricks
    • INCPak Roms
    • Reviews
    • Phone Reviews
    • Stock ROMs
    • What’s new?
    • Computer Stuff
  • Business
  • Education
  • Entertainment
  • Information
  • Fashion
  • More
    • Fun Time
      • Kids Corner
      • Poems
      • Stories
    • Health
    • Editorial
    • Travel
    • Beauty
    • Food
    • Music
    • Movies
    • Sports
    • Documentaries
    • Personalities
    • History
    • Economy
    • Emergency Numbers

© 2023 Independent News Coverage Pakistan