Attackers have announced an alleged data breach impacting Cabify, the popular Spanish ride hailing platform. The database reportedly contains over 430,000 records taken from the company, which operates across Spain and several Latin American countries.
Exposed Driver Information
The Cybernews research team investigated a data sample attached to the leak announcement on a popular data leak forum. According to their analysis, the database appears to include sensitive information belonging to Cabify drivers, potentially creating a serious risk of social engineering attacks.
The allegedly exposed details include:
- Full names
- Home addresses
- Email addresses
- Phone numbers
- Facebook account kit IDs
Researchers explained that the combination of personal records and indications of online presence enables attackers to target exposed individuals with scams and identity theft. For instance, attackers could impersonate Cabify or other ride hailing services to trick victims into clicking malicious links or downloading malware.
The exposure of Facebook account kit IDs could further help attackers to identify and track individuals online. These detailed identity packages are a valuable commodity on the dark web, where malicious actors can use them to bypass verification processes or hijack accounts to use ride hailing services illegitimately.
Found this article interesting? Follow us on X(Twitter) ,Threads and FaceBook to read more exclusive content we post.
