INVC NEWS
New Delhi,
News Reports have appeared in some Electronic and Print media regarding alleged leakage of email and mobile numbers from user profile data of IRCTC E-ticketing system. Indian Railway Catering and Tourism corporation (IRCTC) is a PSU of Indian Railways. Its website irctc.co.in is used for purchasing Railway E-Tickets.
Firstly, Indian Railways would like to clarify that there has been no hacking of the IRCTC website. The E-ticketing website has been working normally thereby eliminating any chances of unauthorized interference. As soon as the matter came to notice of Railways on 02/05/2016, thorough investigations were conducted to detect veracity of the news, however, no such incident has been detected. The Ministry would like to assure that all necessary Safeguards and security checks are in place for this website. There is a system of regular security audits by concerned departments of government of India. All the components of the system are functioning normal and no unusual activity has been discovered. All sensitive data like passwords etc are stored in encrypted form. In addition to this, 24×7 monitoring of the system is done throughout the year by technical team of experts. Hence there is no cause for any panic or concern. A Railway committee set up couple of days back, in its preliminary report has not found any indication of breach of security in any of the databases of the E‑ticketing system.
