IRCTC Free Insurance Bug That Puts Millions of Passenger Data Under Risk

IRCTC fixed a critical security bug that allows attackers to steal passengers private information such as name, age, gender and insurance without user consent. It appears the vulnerability for more than two years, security researcher Avinash Jain found the vulnerability exists both with the IRCTC’s website and app that connects with the third party free insurance service.

Read full news article on GBHackers

 


Date:

Categorie(s):