Fake DigiYatra Website Was Targeting Indian Flyers With Lookalike Portal
1 min read
Summary
Researchers have discovered a phishing site that is impersonating Indian government digital identity initiative DigiYatra, in an attempt to harvest personal details from airline customers.
The fake site, which is still live on the domain digiyatra.in, uses the exact name of the government service, but the layout and user interface have no correlation to the legitimate platform.
Instead, the threat actors operating the site are soliciting personal data including names, phone numbers and emails, but and not booking flights.
Cyber threat intelligence company ThreatWatch360, which detected the site, has contacted the registrar and Indian CERT-In to request a takedown.
It advises travellers to only use the official DigiYatra website and to remain cautious of lookalike sites.