9 lakh IRCTC users’ personal data found online



The personally identifiable information (PII) of 9,39,230 persons, said to be users of online rail ticket seller Indian Railway Catering and Tourism Corporation (IRCTC), has been found online by security firms CloudSEK and Cyble.

Cyble said it found a dark web post on Oct. 13 containing close to 10 lakh users’ data that the post claimed was leaked sometime in 2019.

Cloudsek said it discovered a post on “a surface web database marketplace” on the same day, similarly advertising the information of almost 10 lakh IRCTC users dating from 2019. 

Both companies obtained the data, which they say contains users’ full names, mobile numbers, dates of birth, email addresses, gender, marital status, city, and state.

Internet data can broadly be classified into three layers: the surface web, deep web and dark web. While most compromised databases are available on dark websites that can only be accessed through Tor browsers, surface web content is readily accessible and indexable using regular search engines. The relative ease of accessing the said information is what makes the purported IRCTC data leak incident particularly worrisome.

CloudSEK Threat Research Lead Koushik Sivaraman said that the company was able to verify the authenticity of the information through reverse phone number and email lookups using public sources of information and tools like Truecaller.

Copyright © 2020 IDG Communications, Inc.


Source link