Weren't hacked, but may have lost some data: IRCTC official
Though the railway officials claim that the IRCTC website has not been hacked, the data of the customers may, however, have been sold.
The Cyber Cell of the Mumbai police informed the Railways yesterday, that a large volume of data from its website was stolen. The railway officials rubbished the rumour and the IRCTC PRO Sandip Dutta confirmed in a public statement that "there has been no hacking attempt on the site and a high-level committee has been formed to probe the matter."However, the website of the Indian Railway Catering and Tourism Corporation (IRCTC) tweeted NDTV's Hindi news channel and NDTV India, saying that it’s looking into whether data was sold.
According to reports, the site has three crore active registered users and sees at least five lakh ticket sales for train journeys - making it one of the biggest e-commerce destinations in the country. But that also means that incidents like these can put the security of their sensitive data at stake.
However, a statement from the ITCTC ensured that sensitive data including passwords is encrypted and there is no indication of "breach of security in any of the databases of the e-ticketing system".