ShellCodeX
Tools • Events • News • Insights
ShellCodeX Breach Report

RailYatri Data Breach

railyatri.in
Major exposure
Verified breach
Accounts exposed 23,209,732
Breach date 26 Dec 2022
Added to tracker 05 Dec 2023
Data classes 5

What happened

In December 2022, India’s government-approved online travel agency RailYatri suffered a data breach. The incident impacted over 31M customers and exposed 23M unique email addresses. Also impacted were names, genders, phone numbers and tickets purchased, including travel information and fares.

Exposed data

Email addresses Genders Names Phone numbers Purchases

Recommended actions

  • Watch for targeted phishing emails referencing RailYatri — attackers weaponise breach data quickly.
  • Stay alert for smishing (SMS phishing) and SIM-swap attempts using your phone number.
  • Check whether your email address appears in this breach on haveibeenpwned.com.
Am I affected? Check whether your email address appears in this breach.
Check on HIBP