The famous ride-hailing app Bykea has experienced a security breach where the app issued notifications abusing Pakistan. This incident has raised concerns as the app contains the personal data of millions of Pakistanis.
The breach adds to the growing list of data breaches affecting organizations in Pakistan and highlights the need for improved cybersecurity measures in the region. Bykea, a multi-million dollar company offering transportation and delivery services, has unfortunately become a victim of this breach.
The notification was shown as :
The mobile app displayed the same notice but was still functional. It is reasonable to assume that the hack was merely used as an exploit to display a message to everyone and did not disrupt anything.
According to the information received, the attempt was most likely directed at Bykea’s marketing communications tools, which are in charge of sending push alerts to customers. Typically, this is a third-party product.
“We apologise for the inappropriate messaging sent through Bykea. We can confirm that this was a third party communication tool which got compromised. Our team has restored it and the Bykea app is fully functional and safe to use. If users are facing any issues, we are available on our helpline”, official statement from Bykea.
The specific details of the breach are undisclosed, emphasizing the evolving threat landscape and the risks faced by digital companies. This incident underscores the importance of increased awareness and proactive measures to address cyber threats. Collaboration between governments, businesses, and individuals is essential in developing and implementing stringent security protocols to safeguard sensitive data. Regular security audits, employee training, and adopting best practices are crucial steps organizations should take to strengthen their defenses against potential cyberattacks.