A threat actor is claiming to sell a database allegedly stolen from Cabify, a popular Spanish ride-hailing and mobility service. The actor claims the database contains over 430,000 records related to the company’s drivers.
The sample data provided in the listing shows records from Spain and Chile, indicating the breach may affect drivers across multiple countries of operation.
According to the actor, the compromised database includes a wide range of sensitive driver information. The fields listed for sale include:
-
Full names (name and surname)
-
Usernames
-
Email addresses
-
Telephone numbers
-
Role
-
Full residence information (address, city, post code, and country)
-
Driver identification numbers (identity_id)
-
Driver’s license details (ID, release date, and expiration date)
-
Identity document expiration
-
Facebook AccountKit ID












