Indian ticketing vendor RailYatri exposed 7,00,000 passengers details

 RailYatri is a Indian government-sanctioned travel service provider who sells bus and train tickets for domestic Indian travellers. RailYatri has a web portal and Android/iOS app for their customers to avail different services.Security research team at Safety Detectives, which was led by Anuran Sen, found that an unsecured server of RailYatri was left exposed without password protection or encryption for several days. Sen and his team found the exposed data on August 10 which was approximately 43GB in size. On 12th August, the server became the target of a Meow bot attack, leading to the deletion of almost all server…
Read More

Details of 250 millions Social media accounts left exposed over Internet

 A social media analytics company Social Data has exposed more than 250 millions social media account details over the Internet due to the absence of an authentication system to access their database.Social Data, a Hong Kong based company launched in August 2019, sells data on social media influencers and their followers to marketers, had the entire 235 millions accounts database left unprotected over the web, without a password or any other authentication required to access it. The exposed data includes sensitive and personal information such as names, contact information, personal info, images and followers stats. All this information was collected…
Read More

Beware! Fake Google Chrome downloader can steal your data

The Internet is a place filled with immense knowledge, entertainment, news and what not. It has become an integral part of life. Your electronic device without an active internet connection is hard to imagine.Browser applications such as Google Chrome, Internet Explorer, Safari, Firefox etc are windows to the internet world. You can dive and surf onto the internet using such applications. The whole world is now under your watch through these browser windows.However there are different kinds of threats also sitting on the other side of these windows. They are ready for you to get distracted so they can make…
Read More

Online Attack: What is Social Engineering?

Social engineering is one of the most effective tools attackers use to gain access to a system. In its most basic form, a social-engineering attack consists of simply calling the user and asking for their password,posing as a technical support representative or other authority figure who needs the information immediately. They take advantage of user trust and curiosity. As an end user we receive many spam calls on a regular basis where the person on the other end is posing as your bank executive, trying to trick you into getting your card details, OTP or PIN numbers. The end customer,…
Read More