Ola Cabs Hacked And Users Credit Card Details Comprised

Ola Cab is a taxi service, which is been hacked by a group of hackers called TeamUnkown. The group posted a thread on sunday in Reddit claiming that they have hacked Ola Cab database including all the information of the users such as credit card transaction history, vouchers etc.

TeamUnknown says that ” Their Application design is very poor and their development server is weakly configured. The hack was a little tricky and involved many steps to get to the database. Once we got to the database it was like winning a lottery. It had all the user details along with credit card transaction history and unused vouchers. The voucher codes are not even out yet. Its obvious that we wont be using credit card details and voucher codes. We dropped them a mail but no response from their side as of now. You can see the snapshots in the links given below. I am sure OLA might be having a security team of their own. Not that good it seems 😉 .”

Ola has completely denied that there database has been hacked and they said that their database is not hacked and that was a false claim.

Ola said that “There has been no security lapse, whatsoever to any user data. The alleged hack seems to have been performed on a staging environment when exposed for one of our test runs. The staging environment is on a completely different network compared to our production environment, and only has dummy user values exclusively used for internal testing purposes. We confirm that there has been no attempt by the hackers to reach out to us in this regard. Security and privacy of customer data is paramount to us at Ola.”

Recently in March 2015, a hacker showed how he was able to recharge his wallet many times with the same order ID using Ola’s API


Related posts

Unmasking the Multi-Stage AiTM Phishing and BEC Attack on Financial Institutions

Xiaomi Phones’ TEE Vulnerability May Allow Forge Mobile Payments

Research Finds Facebook Tracks In-App Browser Activities On iOS Devices