OlaCabs hacked, credit cards breached but company denies the report
Ola cabs which is a New Delhi based taxi hailing service provider has been allegedly hacked by group of hackers named TeamUnkown. The group of hacker claims that they accessed database of OLA Cabs and posted three pictures of OLA cabs information on Reddif. They said that they accessed database which includes user’s details as well as user’s credit card’s transaction history and unused vouchers.
The group says
“Their Application design is very poor and their development server is weakly configured. The hack was a little tricky and involved many steps to get to the database. Once we got to the database it was like winning a lottery. It had all the user details along with credit card transaction history and unused vouchers. The voucher codes are not even out yet. It’s obvious that we won’t be using credit card details and voucher codes. We dropped them a mail but no response from their side as of now. You can see the snapshots in the links given below. I am sure OLA might be having a security team of their own. Not that good it seems ;)”.
Also the group said they will not misuse any credit details and vouchers also they informed OLA Cabs about their weakness via an email and but as of now they haven’t received any reply. The images revealed by hackers clearly shows that they have access to email id’s and phone numbers of various employees of OLA cabs and also shows MySqL code which can be used to retrieve any information from OLA database.
Ola denied to the hack and also denied that group had not contacted the company. Here’s the statement issued by Ola:
“There has been no security lapse, whatsoever to any user data. The alleged hack seems to have been performed on a staging environment when exposed for one of our test runs. The staging environment is on a completely different network compared to our production environment, and only has dummy user values exclusively used for internal testing purposes. We confirm that there has been no attempt by the hackers to reach out to us in this regard. Security and privacy of customer data is paramount to us at Ola.”