Another Indian company, RailYatri, India’s government-approved online travel agency, faced data breach exposing over 31 million people’s personal information was exposed. An online database of private information has been released, and it is thought the breach occurred late in December 2022. The application offers bus and train tickets through website or mobile app
in addition to features like train timings, trip status, offline timetables, seat availability, and offline GPS train tracking.
Previously, there were issues related to security misconfiguration which were reported by cybersecurity expert Anurag Sen where he discovered a misconfigured Elasticsearch server that was accessible to everyone online without a security password or any authentication and on 12 August 2020, the server faced Meow bot attack, leading to the deletion of almost all server data.
According to Cyber Security News, other leaked data included PII (personally Identifiable information) and partial payment information:
Full names
Age
Gender
Physical addresses
Email addresses
Mobile phone numbers
Payment logs
Partial records of credit and debit card information
Unified Payment Interface (UPI) ID
Train and bus ticket booking details
Travel itinerary information including which stations passengers boarded/disembarked
Users’ GPS location information including MCC, MNC, LAC, and CellID data
Authentication token information
User session logs including login times
Recommendation
All users whose data could potentially be part of the breach should change their passwords and enable two-factor authentication on their accounts as a precautionary measure. They have also advised users to monitor their bank accounts and credit card statements for any suspicious activity.
References
コメント