RailYatri, a popular Indian train ticket booking platform, experienced a massive data breach, exposing the personal details of over 31 million (31,062,673) users/travelers. The breach is thought to have happened in late December 2022, and the database of sensitive information has now been leaked online.
The leaked data contains email addresses, full names, genders, phone numbers, locations, and 37,000 invoices, putting millions of users at risk of identity theft, phishing attacks, and other cyber crimes. Hackread.com confirmed that the database was leaked on Breachforums, a hacker and cybercrime forum that arose as a replacement for the popular and now-seized Raidforums.
The RailYatri data breach is not your typical case of hackers exploiting flaws, stealing, and spilling data. In fact, it all started in February 2020, when cybersecurity researcher Anurag Sen discovered a misconfigured Elasticsearch server that was open to the public with no password or security authentication.
Sen discovered that the server belonged to RailYatri and notified the company, which initially denied ownership. The company later claimed that it was just test data. The server had over 700,000 logs at the time, with over 37 million entries in total, including internal production logs.
“Back in 2020, when I reached out to Railyatri, they never replied or
[…]
Content was cut in order to protect the source.Please visit the source for the rest of the article.
[…]
Content was cut in order to protect the source.Please visit the source for the rest of the article.
This article has been indexed from CySecurity News – Latest Information Security and Hacking Incidents
Read the original article: