BSI Data Spreads on Dark Web as System Allegedly Still Down

Translator

Editor

17 May 2023 22:58 WIB

TEMPO.CO, Jakarta - The cybersecurity breach on Bank Syariah Indonesia’s online banking system has yet fully recovered one day after most of its data was leaked to the dark web by a ransomware group dubbed Lockbit. The breachers initially demanded BSI to make a payment which was not met until the end of the deadline on May 16.

It is suspected that the ransomware involved data encryption up to BSI's backup data. The indication is the self-recovery process that has been running for more than a week since Lockbit launched its attack on May 8.

The failed system recovery is reflected in the complaints from customers on Twitter to this day. The depth of the complaint by the bank’s customers involves blocked balances, unclear fund transfers, as well as the BSI mobile banking application that is still down.

BSI Corporate Secretary Gunawan A. Hartoyo, through a written statement on Tuesday, still stated that customer data and funds are safe and that customers can transact normally.

"We hope customers remain calm. We will also cooperate with authorities related to the issue of data leak," he said.

Asked separately, cybersecurity consultant and founder of Ethical Hacker Indonesia Teguh Aprianto, revealed that Lockbit had leaked 8,133 files belonging to BSI last Tuesday. Personal information of 24,437 BSI employees and internal documents were included in the list that had been leaked earlier.

Customer data is also confirmed to have been leaked. Among them is the customer's personal data information along with customer loan information at the bank.

"People who have been contacted by BSI are also confirmed to have had their cellphone numbers leaked in the call_history.csv database (10 GB)," Teguh said.

On the same day, Lockbit also leaked the alleged conversation it had with the BSI. In it, it was revealed that the ransom requested was US$20 million, which was negotiated to US$100,000 before it rose to US$10 million and communication from Lockbit was no longer reciprocated.

ZACHARIAS WURAGIL

Editor's Choice: Cybersecurity Firm Kaspersky Claims Ransomware Attacks Spiked in 2023

Click here to get the latest news updates from Tempo on Google News

Recommended

Tempo, Environmental Reporting Collective Shines at SOPA 2022 Award

17 June 2022
Police Nab Teenagers Stopping Moving Trucks on Tangerang-Merak Highway

17 June 2022
OJK Preps Policies on Insurance Marketing via Insurtech

17 June 2022
BMKG Responds to Fatal Abrasion in Amurang, North Sulawesi

17 June 2022
Anthony Ginting - Victor Axelsen Rivalry Heats Up in Indonesia Open 2022

17 June 2022
5 Must-Visit Ranch Vacations for Family in Jakarta Greater Area

16 June 2022
Transjakarta Revitalizes 46 Bus Stops, Provides Shuttle Buses

16 June 2022
German President to Visit Yogyakarta Palace, Borobudur This Friday

16 June 2022
Govt Still Plans to Limit Visitors to Borobudur: Luhut

16 June 2022
Activists Protest Unilever's Massive Plastic Sachet Waste Problem

16 June 2022

BSI Improves IT System Following Service Error: Upgrading Antivirus, Performing Cyber Attack Simulation

9 hari lalu

BSI Improves IT System Following Service Error: Upgrading Antivirus, Performing Cyber Attack Simulation

BSI strengthens its IT system following the error on May 8, 2023, by upgrading antivirus and increasing IT spending.

BSI Admits Massive Money Withdrawals Post Service Disruptions

10 hari lalu

BSI Admits Massive Money Withdrawals Post Service Disruptions

BSI Director Anton Sukarna confirmed that there had been a massive withdrawal of money following the banking service disruptions on May 8.

BSI on Ransomware Attacks: Digital Forensic Investigation Still Ongoing

11 hari lalu

BSI on Ransomware Attacks: Digital Forensic Investigation Still Ongoing

Indonesia's Sharia bank BSI remains tight-lipped about the detailed cause of the disruption to its IT system on May 8, 2023.

Cybersecurity Firm Kaspersky Claims Ransomware Attacks Spiked in 2023

20 hari lalu

Cybersecurity Firm Kaspersky Claims Ransomware Attacks Spiked in 2023

Cybersecurity firm Kaspersky in a statement logged an 181 percent increase in ransomware attacks happening on a daily basis.

Economist Pushes for Personal Data Protection Law Implementation Post BSI Service Disruption

21 hari lalu

Economist Pushes for Personal Data Protection Law Implementation Post BSI Service Disruption

An economist from Indef assessed that BSI customers won't massively withdraw their money despite service disruptions that lasted for days.

BSI Mobile Service Recovery Done Gradually, 434 Branch Offices Open on Weekend

23 hari lalu

BSI Mobile Service Recovery Done Gradually, 434 Branch Offices Open on Weekend

Indonesia's Sharia bank BSI adds operating hours during the recovery period of its mobile banking service following the disruption earlier this week.

OJK Urges Banks to Mitigate Potential Attacks Post BSI Incident

24 hari lalu

OJK Urges Banks to Mitigate Potential Attacks Post BSI Incident

OJK asked PT Bank Syariah Indonesia (BSI) to ensure that services could keep running normally after being disrupted earlier this week.

BSI Director: All Banking Services Return to Normal

25 hari lalu

BSI Director: All Banking Services Return to Normal

Director of Indonesia's largest sharia bank BSI Hery Gunardi stated that all banking services have returned to normal today, May 11.

Mobile Banking Scam; Expert Urges Govt to Boost Cybersecurity Measures

30 Januari 2023

Mobile Banking Scam; Expert Urges Govt to Boost Cybersecurity Measures

Cybersecurity expert Alfons Tanujaya gave his view on the recent cybercrime that hacks a victim's mobile banking account.

Cybersecurity Not Mandated in G20 Digital Economy Working Group

15 November 2022

Cybersecurity Not Mandated in G20 Digital Economy Working Group

Cybersecurity has not become a mandate in the G20 digital economy working group.