Over 7 lakh users of Railyatri claim to have data in danger

Railyatri Indian ticketing platform has put the payment information and personal data of millions of users at risk due to inadequate security. According to the report, RailYatri had saved the users’ data on an unsecured server, from where one could easily access personal data of 7 lakh users. Public data included users’ full names, phone numbers, home addresses, email addresses, ticket booking details, and even credit and debit card numbers. This flaw was first revealed by the cyber-security researcher’s team on 10 August.

According to a report by The Next Web, Researcher’s team at cyber-security firm Safety Detectives first spotted the Elasticsearch server on August 10. The team found that the affected server was accessible for several days without any encryption and password protection. Safety Detective stated in its blog that anyone can access this entire database with the server’s IP address.

The blog also informed that 43 GB of data is available on the server, in which most users are Indians. The firm estimated that more than 7 million people may be affected by the platform’s drawback.

A company spokesperson in this regard claimed that he does not store “financial and other sensitive data”. He said that he does not store credit card details on the server. Apart from this, the spokesperson also informed that only one day’s data is stored on the Rail Yatri server, data older than 24 hours is automatically deleted. In such a situation, he has denied the data leaked information of more than 7 lakh people.

In a blog post, Safety Detective informed that on August 12, the Meow bot has deleted almost the entire server’s data. Meow bot is a new type of cyber-attack, which deletes insecure databases running on Elasticsearch, Redis or MongoDB servers servers.

Download the Gadgets 360 Android app for the latest tech news, smartphone reviews and exclusive offers on popular mobiles and follow us on Google News.

Related news


Recent Articles

Oppo F19 or Oppo F21 series can knock in February

It is being said about the Oppo F19 series smartphone that it can be launched in February. According to the tweet by XDA...

Samsung Galaxy M12 / Galaxy F12 phone specification leaked before launch

Specifications of Samsung Galaxy M12 or Galaxy F12 have been leaked before the launch. Leaked model numbers Galaxy SM-M127 / SM-F127 indicate that...

Huawei Mate X2 foldable phone specification leak, Kirin 9000 processor may be equipped

Huawei Mate X2 smartphone will be the successor of the company's original foldable phone, which is being said that work is going on on...

Rishabh Pant is happy to be compared to MS Dhoni, but plans to identify himself

new Delhi: After winning the Test series against Australia, the Indian cricket team is being praised all over the world. At the same...

Wynk Premium subscription will now be free with Airtel’s Rs 78 and Rs 248 data add-on pack

Airtel has launched two prepaid plans of Rs 78 and Rs 248, with which you are going to get Wynk Premium subscription free. ...

Related Stories

[vc_column tdc_css=”