First there is news of a big cyber attack on the country's biggest hospital AIIMS and now on the country's biggest employer Indian Railways. It is being said that the information of 3 crore passengers has been stolen in this possible data breach. Although IRCTC has clarified about this that this data was not stolen from its server, the rest of the investigation is going on.
Hackers Breach Railway Server : India is now coming under the target of hackers. Within a month, this is the third such occasion when there has been a major cyber attack on government related units. First there was news of a breach in the server of the country's largest hospital AIIMS, then the Twitter account of the Ministry of Jal Shakti was hacked. Now there is news of data theft of about 3 crore passengers traveling by Indian Railways. Although the government company IRCTC, which provides the facility of online ticket booking, has clarified on this possible data theft that the data has not been leaked from its server, the rest is being investigated.
According to the news, the passengers whose data has been stolen include information related to their email ID, gender, age and phone number etc. At the same time, IRCTC has given an update by issuing a statement in this regard.
Other Business Partner Tax Data Leak Investigation
In its statement to IRCTC, the Railway Board has sent a cert-in alert to IRCTC regarding possible data theft in Indian Railways. This is related to the information of railway passengers. In this regard, a sample of the data was analysed, and it was found that it does not match with the history of the IRCTC app. Possible data leak has not happened from IRCTC server.
Investigation is on in this matter. At the same time, all the business partners of IRCTC have been asked to check their servers immediately, so that it can be confirmed that there is no data leak from their side. Along with its result, IRCTC is also taking all corrective steps.
Data theft of 3 crore passengers
According to a report published in Mint, a national business newspaper, a hacker forum had carried out this incident on 27 December. The real identity of the Hacker Forum has not been revealed but it is known as 'Shadow Hacker'. It is alleged that this hacker forum is selling this data of 30 million passengers on the dark web. The hacker group said that it has personal information including email and mobile numbers of three crore people who have booked tickets in Indian Railways. The hacker group also claimed that it had stolen official email accounts of several government departments.
Screenshot of the details posted by the hacker group
This agency is investigating
Earlier, Minister of State for Electronics and IT Rajeev Chandrasekhar had said that the ransomware attack on AIIMS Delhi's servers was a conspiracy and planned by important forces. In a ransomware attack, cyber criminals lock access to data or a device and promise to unlock it after paying a desired ransom. Ministry of Electronics and Information Technology, Delhi Cybercrime Special Cell, Indian Cybercrime Coordination Centre, Intelligence Bureau, Central Bureau of Investigation, National Forensic Sciences University, National Critical Information Infrastructure Protection Center and Indian Computer Emergency Response Team within National Investigation Agency etc. Investigating the attack.
No comments:
Post a Comment