Train ticketing platform RailYatri hit by data breach
2 years ago

Train ticketing platform RailYatri hit by data breach

The Hindu  

Train ticketing platform RailYatri on Wednesday confirmed that it suffered a data breach in December 2022, shortly after the Railway Ministry denied that user data were being sold on the dark web leaked from the Railways’ side. “We observed a security breach in our system on December 28, 2022,” a RailYatri spokesperson told The Hindu. “Our platforms have proper authorisation and authentication in place and access to the applications is through HTTPS and servers are behind firewalls which can be accessed through VPN only by authorised teams.” While the breach was reported to the authorities on December 28, the Railway Board did not name RailYatri when it issued a statement on December 30 denying that data were stolen from IRCTC. While the Digital Personal Data Protection Bill, 2022 provides for penalties in the event of a data breach, the law is yet to be passed, over five years after the Supreme Court affirmed the constitutional right to privacy and kick-started the process for the creation of data protection legislation.

Data Breach Breach User Data Railyatri  railyatri  user  data  hit  platform  breach  systems  railway  web  2022  ticketing  reported  train  security

History of this topic

Investigators have revealed how hackers allegedly stole Ticketmaster data. Realistically, will they be punished?
6 months, 2 weeks ago

Investigators have revealed how hackers allegedly stole Ticketmaster data. Realistically, will they be punished?

ABC  

In short: Hacking group ShinyHunters claims it stole the data of 2 million Australians through Ticketmaster in May, and threatened to sell it on the dark web. Hacking group ShinyHunters claims it stole the data of 2 million Australians through Ticketmaster in May, and threatened to sell it on the dark web. "During this investigation, Mandiant determined that the organisation's …

Indian Railways data hacked, being sold on dark web
2 years ago

Indian Railways data hacked, being sold on dark web

India TV News  

Data of around three crore travellers registered with the Indian Railways has been hacked and reportedly put on sale on the Dark Web, as per reports. It has been claimed by the hackers that the Indian Railways data is one of the biggest data ever hacked by anyone. Image Source : PIXABAYHack The data of Indian Railway put on sale …

RailYatri data breach affects 7 lakh users, report says
4 years, 4 months ago

RailYatri data breach affects 7 lakh users, report says

The Hindu  

A data breach at online travel marketplace RailYatri has affected about 7 lakh users, according to a security report by Safety Detective research lab. The security research team discovered information, including passenger name, age, email address, partial records of credit and debit card information, and Unified Payment Interface ID. “We would like to clarify that report suggesting 7,00,000 email addresses …

RailYatri security flaw allegedly exposed UPI data, debit card details of 7 lakh passengers
4 years, 4 months ago

RailYatri security flaw allegedly exposed UPI data, debit card details of 7 lakh passengers

India Today  

A security flaw in Railyatri has alleged exposed the users' data of as many as 7 lakh passengers. As per a report, the Indian ticketing platform has accidentally exposed the UPI data, debit card details of users due to flawed security policies that have put the data of so many users at risk. The team also falsified the report that …

Discover Related