What's the news: Online travel aggregator Cleartrip has suffered a data breach that has resulted in the compromise of certain customer data, the Flipkart-owned company said in an email dated July 18 sent to customers. "This is to inform you that there has been a security anomaly that entailed illegal and unauthorised access to a part of Cleartrip's internal systems," Cleartrip said in its statement while recommending customers reset their password as a precautionary measure. What data was compromised: Cleartrip's statement lacks details. "We would like to assure you that aside from some details which are a part of your profile, no sensitive information pertaining to your Cleartrip account has been compromised as a result of this anomaly of our systems," the company said, without providing any details on the timeline of the breach, the specifics of what data has been compromised, and how many customers are affected. We have reached out to Cleartrip seeking more details and will update this post once we get a response. https://twitter.com/Jayesh_Kumar/status/1548975687218122752?s=20&t=5DtqbpwieAeo7mXe053CZw Why does this matter: Cleartrip is a popular travel aggregator in India with about 18 percent market share. This breach puts the personal data of millions of customers at risk. Notably, this is also the first major data breach to take place after the new cybersecurity directions went into effect on June 28 (except for small and medium enterprises who have until September 25). According to these directions, all companies are supposed to report breaches within 6 hours. It's not clear if Cleartrip has adhered to this direction. "As per our protocols, we have immediately…
