Railway Board's high-level committee to unearth IRCTC hack

An alleged data theft case has sent the Indian Railway Board and IRCTC users in a frenzy. The Board has now established a high-level committee comrising six experts to get to the bottom of the alleged hack. Data belonging to 10 million users of IRCTC, country's largest e-commerce portal is reported to have been hacked and sold.

According to a report in Business Standard, IRCTC officials said this unprecedented hack could have compromised personal information of millions of IRCTC users including their PAN card details, email ids and mobile numbers.

Reacting to the data theft, an official from the railways said, it is difficult to say anything until the leaked data is verified and checked, any claim of data hack can only be substantiated when we see the data.

The alleged hack came into light when the Inspector General (IG) of Maharashtra's Cyber Cell informed the Chief Commercial Manager (CCM) - Western Railways on Tuesday that a huge bulk of data of IRCTC users may have been leaked. The incident led the Railway Board to form a panel, including three members of IRCTC and three from Center for Railway Information Systems (CRIS).

IRCTC, which sells more than 500,000 tickets on its website every day, has asked the IG-Cyber Cell of Maharashtra to share the data sets that led to the investigation so as to identify the origin of the leak.

IRCTC's Managing Director has also written to Delhi Police's Cyber Cell to take the matter seriously as there are concerns regarding the chances of users' credit card details or bank details being stolen.