Indian Railways
What was exposed
Email addressesPasswordsUsernames
What to do if you were affected
- Change your password for this account, and anywhere you reused it. Turn on two-factor authentication.
- Expect more phishing and spam at this address. Treat messages that reference this company with extra caution.
- Be wary of targeted scams that use your personal details to sound convincing.
Details
In November 2019, the website for Indian Rail left more than 2M records exposed on an unprotected Firebase database instance . The exposed data included 583k unique email addresses alongside usernames and passwords stored in plain text.
Frequently asked questions
What is the Indian Railways data breach?
In November 2019, the website for Indian Rail left more than 2M records exposed on an unprotected Firebase database instance . The exposed data included 583k unique email addresses alongside usernames and passwords stored in plain text.
When did the data breach happen?
This data breach occurred around October 2019.
How many accounts were affected?
Around 583,377 accounts were affected.
What information was exposed?
Exposed data included Email addresses, Passwords and Usernames.
What should I do if I was affected?
Change your password for this account, and anywhere you reused it. Turn on two-factor authentication. Expect more phishing and spam at this address. Treat messages that reference this company with extra caution. Be wary of targeted scams that use your personal details to sound convincing.
Related breaches