MakeMyTrip

MakeMyTrip, operating as MakeMyTrip India Pvt. Ltd., is an online travel booking platform headquartered in India. The service facilitates reservations for travel bookings, enabling customers to arrange transportation and accommodation through its digital interface. Its operations are structured as a private limited company under Indian corporate law, serving primarily the domestic market. The platform functions as an intermediary between consumers and travel service providers, processing transactions for various travel-related purchases. While specific metrics on user base or transaction volume are not provided, its inclusion in a major fraud case indicates a significant operational scale capable of handling substantial financial activity. The company's business model relies on secure payment processing integrations to complete bookings, positioning it within the broader e-commerce and digital services sector. Its role as a travel aggregator requires robust partnerships with airlines, hotels, and other vendors to offer consolidated services. The platform's presence in India places it within a competitive online travel agency landscape, though its exact market positioning is not detailed in available information. Security and trust are critical components of its service, given the financial nature of its transactions.

In December 2016, MakeMyTrip was affected by a sophisticated fraud scheme where attackers exploited vulnerabilities in the PayU payment gateway to generate fraudulent vouchers worth Rs92 lakh. These vouchers, created by intercepting and altering payment processing pages to change transaction amounts to minimal sums like Re1 while using counterfeit credit cards, were subsequently used on MakeMyTrip for unauthorized purchases of travel bookings and luxury items. The operation, led by Sunny Nehra, allowed the perpetrators to fund transient lifestyles until digital forensic investigation traced them through device purchase records and social media profiles, resulting in their arrest following a complaint from the voucher provider gyftr.com. This incident highlights MakeMyTrip's exposure to third-party payment system risks and the cascading impact of security failures across interconnected digital platforms. The case also underscores the platform's integration into a wider voucher-based commerce ecosystem, where compromised instruments can be misused across multiple services. The resolution through law enforcement action demonstrates the legal recourse available for such cyber-enabled financial frauds in India. The event remains a documented example of digital shoplifting targeting major online service providers, reflecting persistent challenges in payment security for e-commerce platforms.