Data Breach Exposes Over Six Million Receipts of Iranian Ride-Hailing Company

Iran’s Minister of Communications and Information Technology confirmed on Thursday published reports of a data breach involving over six million trips by an internet ride-hailing company.

Mohammadjavad Azari Jahromi wrote in a tweet that “the published report regarding the existence of a vulnerability in data storage by an internet ride-hailing company is accurate. Additional investigation is underway and the report will be officially published through the Maher Center”.

He did not provide further details about the incident or the name of the company in question. It is still unclear when this data was leaked.

Some Twitter users have speculated that the aforementioned data must have leaked from the data center of internet taxi service “Tappsi”.

The “Security Discovery” website reported that the leaked data related to receipts issued for taxi passengers in the years 1395 and 1396 (2016-2017).

According to the report, the number of leaked receipts in 1395 was approximately 700,000 cases, containing information including individuals’ names, national ID numbers, and phone numbers.

Receipts from 1396 whose data was also exposed numbered over six million cases.

In recent years, internet taxis have gained considerable popularity in Iran due to their affordability and speed in transporting passengers. However, news about changes in regulations for these services or their poor performance is occasionally published.

Source: Radio Farda