Swvl Customer Data Exposed


The Swvl Group Transport Company revealed that its platform was exposed to a security breach on Friday evening targeting some customers’ data, although all bank details were safe.

The company added that as soon as the breach was discovered, its IT team took control of the breached vulnerability, with the site fully secured in a short period of time. SWVL, is an Egyptian bus transportation network company based in Cairo, with operations in more than five countries.

It operates buses along fixed routes and allows customers to reserve and pay for them using an app. It was founded in April 2017. Mostafa Kandil, CEO of the company, said the hacked data were limited to names, phone numbers, and e-mail addresses. He stressed that payment data and bank cards are fully secured with strong protection systems that are difficult to access.

Kandil also said that his company adopts a data storage system that completely separates payment data from users’ other data. He indicated that his company has used a large Japanese electronic insurance company to review and verify the protection systems that it has in place and to ensure that there are no gaps. The breach was resolved within a few hours, with users informed and logged out of the system. They were asked to re-enter the platform with their passwords as a precaution, Kandil added.