Lupa Kata Sandi? Klik di Sini

atau Masuk melalui

Belum Memiliki Akun Daftar di Sini


atau Daftar melalui

Sudah Memiliki Akun Masuk di Sini

Konfirmasi Email

Kami telah mengirimkan link aktivasi melalui email ke rudihamdani@gmail.com.

Klik link aktivasi dan dapatkan akses membaca 2 artikel gratis non Laput di koran dan Majalah Tempo

Jika Anda tidak menerima email,
Kirimkan Lagi Sekarang

Millions of Tokopedia Accounts Breached; Beware of Phishing

3 May 2020 17:21 WIB

TEMPO.CO, Jakarta - Millions of Tokopedia e-commerce user accounts have been breached. In fact, the owner of the @underthebreach Twitter account said the hacker had sold the Tokopedia database of 91 million accounts for US$5,000 (Rp74.5 million) on the Darknet.

Cyber security expert from Vaksin.com, Alfons Tanujaya, said that the breached information were usernames, email addresses, date of births, and telephone numbers. "Nearly 100 percent of Tokopedia user accounts have been breached," he told Tempo, May 3, 2020.

Alfons reminded two possible threats that might occur to the account holders, namely phishing and brute force. "Exploitation of email data, cellphone numbers and other sensitive data such as birth dates are very vulnerable to be used for phishing, scam and telemarketing activities," he said.

In computer terms, phishing is a form of fraud characterized by attempts to obtain sensitive information, such as passwords and credit cards, by posing as a trusted person or business in an official electronic communication, such as electronic mail or instant messages. While pure brute force uses computer to crack passwords.

According to Alfons, the brute force method is easily prevented. "Just give them time pendings, one mistaken password from the hacker means they get 10 minutes pending, twice means 20 minutes pending, three times means 40 minutes pending, and so on, so the hack will not work," he said.

Meanwhile, if phishing happens, the loss depends on the victim. "If the account holders were successfully deceived and not get an update, well they could easily enter their credentials into fake sites," he said.

Alfons said all online services were targeted by hackers. According to him, what happened in Tokopedia was still relatively not too dangerous. "It's still good to have a hash (encrypted) and has implemented TFA (Two Factor Authentication), so the user accounts are safe," he said.

Based on the test conducted by Vaksin.com, said Alfons, if there is someone who knows the username and password of the account holder after it was successfully breached, then there will be two factors of authentication.

"So the hacker will request verification to WhatsApp or SMS. If the user clicks on WhatsApp then a verification is sent to WhatsApp with a user login record from the new device."

"If you have never logged in from a new device, then Tokopedia verification suddenly appears, that means your credentials have been breached and you have to replace it. And never give the verification code you received to anyone, even if they claim to be from Tokopedia," Alfons said.

Meanwhile, Tokopedia's Corporate Communication VP Nuraini Razak confirmed that there was an attempt of data theft on its platform users. However, the company ensures that important user information, such as passwords, remains successfully protected.

"Although users' passwords and crucial information are still protected behind encryption, we encourage Tokopedia users to keep changing their account passwords regularly for security and convenience," Nuraini said.

CAESAR AKBAR | PETIR GARDA BHWANA



TikTok-Tokopedia Migration under Strict Monitoring, Says Trade Ministry

20 hari lalu

TikTok-Tokopedia Migration under Strict Monitoring, Says Trade Ministry

Trade Ministry director Rifan Ardianto said that his side was still closely monitoring the migration process of TikTok and Tokopedia.


GoTo: TikTok Shop Transactional Process Already Trough Tokopedia

20 hari lalu

GoTo: TikTok Shop Transactional Process Already Trough Tokopedia

Teten Masduki accuses TikTok of not complying with Indonesian regulations because it still conducts transactions through the app.


Govt to Summon TikTok This Week Over Social Commerce Ban Compliance

30 hari lalu

Govt to Summon TikTok This Week Over Social Commerce Ban Compliance

The Ministry of Trade plans to summon TikTok this week to ensure the platform still complies with the Trade Minister Regulation No. 31 of 2023.


Today's Top 3 News: Tokopedia Co-founder Denies JATAM Report on Mining Business Ownership

49 hari lalu

Today's Top 3 News: Tokopedia Co-founder Denies JATAM Report on Mining Business Ownership

Here is the list of the top 3 news on Tempo English today.


Tokopedia Co-founder Denies JATAM Report on Mining Business Ownership

50 hari lalu

Tokopedia Co-founder Denies JATAM Report on Mining Business Ownership

Tokopedia co-founder Leontinus Alpha Edison insisted that he has no mining business, denying the recent report by the Mining Advocacy Network (JATAM).


Tokopedia Gets New President as Tiktok Officially Becomes Controlling Shareholder

55 hari lalu

Tokopedia Gets New President as Tiktok Officially Becomes Controlling Shareholder

PT GoTo Gojek Tokopedia (IDX: GOTO) announced the new CEO of Tokopedia following the completed transaction of TikTok's investment in the company.


The Questions behind TikTok and Its Tokopedia Acquisition

20 Januari 2024

The Questions behind TikTok and Its Tokopedia Acquisition

TikTok Shop's acquisition of Tokopedia changes the Indonesian business map. It is not clear how small and medium enterprises will be protected.


KAI's Internal Data Allegedly Hacked, Sold Using Cryptocurrency

16 Januari 2024

KAI's Internal Data Allegedly Hacked, Sold Using Cryptocurrency

A hacker group reportedly accessed sensitive data belonging to state-owned railway operator PT Kereta Api Indonesia (PT KAI).


10 Best Sites and Apps to Buy Cheap Flights

15 Januari 2024

10 Best Sites and Apps to Buy Cheap Flights

Finding a cheap flight online has also become a useful skill to have nowadays.


IT Expert Responded to TikTok Shop-Tokopedia Collaboration

18 Desember 2023

IT Expert Responded to TikTok Shop-Tokopedia Collaboration

Expert from the ICT Institute Heru Sutadi responded to the return of TikTok Shop in Indonesia after its team-up with Tokopedia.