According to a recent report, personal data of about 1 Cr IRCTC users is feared to have been leaked from the website’s server. The Maharashtra cyber cell had informed IRCTC about a potential data theft of its user registration details on Tuesday.
IRCTC has denied the report and said that there is nothing wrong with its website.
However, according to this tweet, Maharashtra Government has confirmed the data theft.
Maharashtra Govt confirms @IRCTC_Ltd website hacked. Up to 1 crore account details potentially compromised. Being sold in a CD for Rs 15k.
— Rahul Kanwal (@rahulkanwal) May 5, 2016
An IRCTC official stated that a committee has been formed to enquire into the alleged data breach.
IRCTC is the biggest travel ecommerce platform in India with lakhs of transaction done on its platform everyday. It currently has a user base of 39 Mn and it sells close to 500K tickets on a monthly basis. The data captured by the hackers can be sold to other companies who may use it for targeting potential consumers.