Massive Data Leak Hits Ride-Hailing Firm in Iran

Sensitive data on thousands of Iranian drivers working with ride-hailing firm TAP30 was left unsecure in a publicly available database, a cyber threat intelligence expert discovered.
Alerting Iran's Computer Emergency Response Team Coordination Center (Iran CERTCC ), Bob Diachenko took to Twitter on Friday to report the exposure.
“On April 18 I discovered an open and publicly available MongoDB instance which contained astonishingly sensitive information on Iranian drivers,” he wrote on SecurityDiscovery.com. MongoDB is a cross-platform document-oriented database program.
Local media extensively covered the breach. Reports were published on IRNA news agency, along with news websites like Peivast, Zoomit and Webna.