BPJS Kesehatan Massive Data Breach Investigation Update

Translator:

Editor:

Petir Garda Bhwana

  • Font:
  • Ukuran Font: - +
  • Officers serve participants from the Health Social Security Administering Body (BPJS) at the Central Jakarta Branch Office, Friday, May 28, 2021. BPJS Kesehatan has now submitted a report to the National Police Bareskim regarding the alleged data leakage and sale of 279 million Indonesian citizens by an account named Kotz at Raid Forums, raidforums .com. ANTARA PHOTOS/M Risyal Hidayat

    Officers serve participants from the Health Social Security Administering Body (BPJS) at the Central Jakarta Branch Office, Friday, May 28, 2021. BPJS Kesehatan has now submitted a report to the National Police Bareskim regarding the alleged data leakage and sale of 279 million Indonesian citizens by an account named Kotz at Raid Forums, raidforums .com. ANTARA PHOTOS/M Risyal Hidayat

    TEMPO.CO, Jakarta - The Indonesian National Police Criminal Investigation Unit (Bareskrim) investigation has yet found any significant pieces of evidence to uncover the alleged data breach on 279 million participants of the national Health Care and Social Security Agency (BPJS Kesehatan).

    Police spokesperson Brig. Gen. Rusdi Hartono said investigators are continuing to look into who was behind the massive data breach with millions of sensitive data at risk. 

    “There is no information regarding the source country server of the breach,” Rusdi confirmed on June 7. 

    So far, police investigators have questioned nine witnesses that consist of two from the BPJS Kesehatan office, two employees of the National Cyber and Encryption Agency (BSSN), and five other vendors. 

    The personal data of 279 million Indonesians in the Health Care and Social Security Agency (BPJS Kesehatan) allegedly leaked and were traded on online forum raidsforum.com. The data include citizenship identity numbers, identity cards, phone numbers, email addresses, names, home addresses, up to salaries.

    The Communication and Informatics Ministry (Kominfo) announced they had blocked the website and the website’s user who allegedly leaked the personal information. 

    The Kominfo then summoned the Healthcare and Social Security Administrator (BPJS Kesehatan) and agreed to investigate it deeper alongside the National Cyber and Encryption Agency (BSSN).

    Read: BPJS Kesehatan Denies Misconduct in Data Breach Allegation

    ANDITA RAHMA