Horrible Joke: Careem Date breach announcement after 100 days?



So, @CareemPAK is informing us today us that their data has been breached on 14 January - as mentioned on their website. What were they doing in last 100 days? It has a major consequence and no less than a criminal offense - let me explain in this thread.

First, and the simplest thing is: Now they are asking to change your password? For what? Because the one in the custody of all your data can misuse - or can harm your life (YES! your life). Can they do in last 100 days?

Aren't they obliged to disclose this information to everyone immediately? WHY? Because of the same reasons they are disclosing at the moment. They didn't why? To secure their systems at the cost of public privacy? Now let me explain how harmful it is...

It is pretty common that people use the same or similar password across different applications. Having access to one of passwords of a person may provide you access to h/her different accounts including social media accounts. Imagine - in one could access your FB in last 99 days?

As they stated: "While we have seen no evidence of fraud or misuse related to this incident" - how could one know about it if they are announcing it today? How could I think of stranger activity on my social media platform is linked to this incident before this announcement?

AND MORE IMPORTANTLY: They stated: "incident involving unauthorised access to the system we use to store data" - did they have access to CREDIT CARD data? There is no acceptance or denial on this. They must provide a clear stand on this.
But there is a clear sign: "Continue to review bank account and credit card statements for suspicious activity – if you see anything unexpected, call your bank" Why? Bcz they have got access to my financial data too?
Hey @CareemPAK : are you storing my credit card info as well? No PCI compliance? if so, then why do I need to worry about my bank accounts? Something extremely fishy - now I can relate @SyedRezaMehdi 's tweets regarding credit card issues.

And you won't see such reviews in mainstream - warna Ad kon dega?

The above article is a Tweet Thread by me on the response of Careem's announcement regarding data breach. You can see the complete thread by viewing following Tweet:

Comments

Popular posts from this blog

Khuda Karay K Meri Arz -e- Pak Par Utray

ME as Author for KMB!!!

UFONE GPRS mystery