IRCTC, Indian railway’s official website has been hacked today. All the transaction and ticket booking are usually done through this portal. The hack has been confirmed by the government and news portals. What claimed to be one of the biggest hacks of the world, the fear is growing among the users as PAN card and many other sensitive data has been compromised. This has lead to the leak of over 10 million users sensitive information. It is said to be one of the biggest set back towards the digitalization. Over millions of transactions happen every day through the portal. Not online users password is compromised but bank details and other sensitive information also seems to be compromised.
With millions of transactions happening daily, it is evident that IRCTC database can be a Holy Grail for the hackers. Users also upload their pan card (all bank transaction can be seen using PAN card) and other documentation. It also carries other sensitive data like debit and credit card details. It has also put a big question on the cyber cell of India. Time to time they have been caught sleeping. The worst thing about the entire scenario is that the database is being sold at measly Rs. 15,000 ($250) in a public domain.
The government has already confirmed the leak, and it is being investigated as of writing this. It is a trending topic on Twitter in India now. However, authorities are yet to spill the beans about the leaked data and what is been done to stop it. Maharastra cyber cell has confirmed the news but the government is refuting the matter. For a security reason, the leaked data are not attached here.
A senior railway official said, “Somebody can create forged documents on the basis of the stolen data.” State police and appropriate cyber cell and authorities have already been alerted about the issue, but none of them are coming forward and addressing the real issue.
Source [TOI]