INSUBCONTINENT EXCLUSIVE:
In what might be the biggest data breach of a federal government entitys digital properties till date, the personal details of almost 30
million railway users have actually been placed on sale on the dark web by a hacker
These information include name, e-mail, contact number, gender, and other personal info of numerous federal government officials and notable
personalities, among others, the hacker has claimed
The hacker declined to disclose the name of the company whose servers were breached, however stated it is one of the most significant trains
On the other hand, the ministry of trains has actually validated the hack, adding that it had actually alerted the Indian Computer Emergency
Response Team (CERT-in) about the possible data breach
The ministry declares that the data is not from the servers of its own ticketing arm, Indian Railway Catering and Tourism Corporation
On an analysis of sample information, it was discovered that the sample data key pattern does not match with IRCTC history API (application
Reported/suspected information breach is not from the IRCTC servers, the trains said
The seriousness of the breach has actually brought the government on its heels, which has immediately put IRCTCs private ticketing partners
Further Investigation on the information breach is being done by IRCTC
All IRCTC organization partners have been asked to right away take a look at whether there is any data leak from their end and apprise the
results along with restorative steps taken to IRCTC
The state-owned companys private ticketing partners include big tech giants such as Amazon, Paytm and noted online travel portals
MakeMyTrip, RailYatri, Goibibo, and EaseMyTrip to name a few
According to IRCTCs figures, the platform was used for booking practically 430 million tickets in the financial year 2021-22, with almost
6.3 million everyday logins and more than 80 million users of its online services
Over 46 percent of its ticket bookings come through the mobile app, which has the greatest quantum of data kept from a user
While the factor for the data breach is not clear, experts think the breach might be different in nature from the current attacks on the
servers of All India Institute of Medical Sciences (AIIMS) and Central Depository Services (CDSL)
In this case, it could have been an IDOR (Insecure direct item referral) or authentication vulnerability in the impacted travel
reservations application platform
While in the case of CDSL and AIIMS, from what remains in public understanding, it appears to have been network invasion with the function
to take over all connected systems to the network, stated Himanshu Pathak, creator and handling director of cybersecurity research study
IDOR is a typical, possibly devastating vulnerability originating from damaged gain access to control in web applications
Pathak added, A huge percentage of Indian organisations do not have and are highly careless about sensitive data security
Organisations like booking platforms and comparable, who are dealing with delicate client data need to go through routine quality focused
security screening of their applications
Beside that, there is an alarming need of a rigorous information protection law, in order to require organisations dealing with delicate
information to in fact follow best security practices and secure the sensitive information
