Security News > 2022 > July > Walmart-controlled flight booking service suffers substantial data leak

An Indian flight booking website majority-owned by US retail colossus Walmart has experienced a data breach, but is saying very little about what happened or the risks to customers.

Cleartrip would you mind telling us when the breach happened? pic.

While the message to customers assures them that "No sensitive information pertaining to your Cleartrip account" was exposed, that leaves open the possibility that information pertinent to other matters may have been accessed.

The Register therefore asked Cleartrip how attackers were able to access its systems, what data was exposed, whether that data was encrypted, if any information was exfiltrated, when the breach was detected, when the company notified users, and how the company plans to change its infosec practices in response to the breach.

We're sure that's a comfort to Cleartrip customers - especially as Indian media reports that Cleartrip data has been put up for sale on the dark web.

The CLEARTRIP seems to have suffered a massive data breach !!.

News URL

https://go.theregister.com/feed/www.theregister.com/2022/07/19/cleartrip_data_leak/