TEMPO.CO, Jakarta - The Communication and Information Ministry (Kominfo) summoned BRI Life over the alleged customers’ data breach on Wednesday, July 28. Based on the meeting, the ministry suspected that there was a security hole in the electronic system of BRI Life, the insurance arm of state lender Bank Rakyat Indonesia (BRI), that was being misused by irresponsible parties.
“The summon is in accordance with the Government Regulation No. 71 of 2019 on the implementation of electronic systems and transactions,” said Kominfo spokesman, Deddy Permadi, as quoted on Thursday, July 29.
Data of 2 million insurance users allegedly leaked and sold online. The breach issue was reported by a Twitter account on Tuesday, July 27.
Deddy explained BRI Life had taken steps to stop the attempts of unauthorized access and was conducting an in-depth investigation of the security of the electronic system by cooperating with a Digital Forensic Consultant.
“BRI Life will immediately submit the findings of the examination to relevant parties in accordance with the mandate of the law,” he said.
The ministry, Deddy continued, would also follow up on the results of the meeting by conducting intensive communication with BRI Life and providing assistance.
Referring to Article 35 of Government Regulation No. 71 of 2019, Kominfo has the authority to conduct inspections on the operation of electronic systems. The ministry will coordinate with various parties, such as the National Cyber and Encryption Agency (BSSN) and the National Police, to deal with the alleged personal data breach.
FRANCISCA CHRISTY ROSANA