MUMBAI: In what could be a major hack, the personal data of around one crore customers of IRCTC, the e-ticketing portal of India, is feared to have been stolen from the server of the ticket-booking website. Consequently, the hack has raised concerns over safety and security about the customers’ personal information.

The official website of the Indian Railways, IRCTC is the biggest travel e-commerce website in India and lakhs of transactions are conducted by the site everyday. The website had stored personal data of around 1 crore customers, including email IDs, mobile numbers and Pan Card details which is said to be stolen from the server.

It is said that the state government has reportedly identified the hackers and they have informed IRCTC and Railway Board about the issue. The hacking occured late on Tuesday night and the site has now been brought under control. But the fears of personal information of thousands of customers being misused still remain.

Maharashtra Police has alerted IRCTC that the e-commerce website has been hacked and some data has been stolen.

— ANI (@ANI_news) May 5, 2016

IRCTC users reveal their PAN card details, credit/debit card details for filing reservations, which can now all be accessed by hackers and can be used to forge documents on the basis of the stolen information.

Delhi police’s cyber cell has been asked to probe the matter and see how far have the hackers got into the system, but no official complaint has been made so far.

Things You Should Do ASAP:

If you have used IRCTC in the past, even if only once, this will be good time to go to the site and do following:

Reset password: This you can do by going to the website and logging into it. Once you are in, opt to change the password by going into your profile settings.

Reset prepaid card: You may have some money in your IRCTC prepaid card, if you use one. Reset it.

Reset details in other apps: If you have connected your IRCTC login details to an app like Yatra or MakeMyTrip, disconnect it and reconnect using the new password, if required.

It is also a good idea to provide as little details as possible to any website where you do any sorts of transaction.

However, IRCTC denied any such breach into their systems and tweeted that the website has not been hacked.

@nextbigwhat IRCTC website has not been hacked. Enquiry is being conducted regarding alleged data theft.

— IRCTC Ltd. (@IRCTC_Ltd) May 5, 2016

Stay tuned with us for more latest news. Press CTRL+D right now to bookmark this website in your web browser.