Iran's online taxi service Tapsi breaches 30M people's PII and trip info

On September 2nd, the Iranian Taxi Service Tapsi was targeted by a malicious attack, exposing the personal information of 27 million passengers and 6 million drivers, which in total make up a third of the country's population

These details include Internal User ID, First and last names, phone numbers, home cities, and email addresses, and device information

Over 136 million trips with exact trip start and destination which user's home addresses can be extracted from

Tapsi's Internal codebases and source code have also been leaked

A sample of the breach has been published in a Telegram channel

The breach is being sold for $35k