Indian train ticketing platform RailYatri suffered another data breach, exposing the personal information of over 31 million (31,062,673) users. This is the second incident in nearly three years, following a data breach at the government-approved ticketing platform that exposed the personal information of approximately 7 lakh users.
Email addresses, full names, genders, phone numbers, and locations are among the information contained in the database. In August 2020, the Indian Computer Emergency Response Team (CERT-In) became involved after the company claimed it was a test server and later secured it. On February 16, hackers attacked RailYatri servers again, stealing the data of 31 million users and posting it on the cybercrime forum BreachForums, according to cybersecurity researcher Anurag Sen.