Coordinating Minister For Political, Legal And Security Affairs Regarding NPWP Data Leaks: Obtained From Several Cities/Regencies, Some Are Incompatible
Coordinating Minister for Political, Legal and Security Affairs (Menko Polhukam) Hadi Tjahjanto said that based on a temporary analysis, some data on the leaked Taxpayer or NPWP Number did not match the original data of the owner.
"It is suspected that the data was obtained from several cities/regencies so that some of them are not in accordance with their owners, both NIK and NPWP," Hadi said during a meeting with Commission I of the DPR RI at the Parliament Complex, Jakarta, Monday, September 23, which was confiscated by Antara.
Hadi said his agency together with the National Cyber and Crypto Agency (BSSN) also continues to validate the data allegedly leaked by the hacker, both NIK data, NPWP, and telephone numbers.
According to him, the internal team from the Ministry of Finance has also been working to follow up on information about the data leak.
In the near future, he continued, the Coordinating Ministry for Political, Legal and Security Affairs will hold a cross-ministerial meeting which was also attended by a number of director generals to discuss the issue of the alleged data leak and find solutions and mitigation.
So far, Hadi said the government already has short-term efforts to overcome a number of alleged data leaks, both NPWP and NIK data, to the establishment of a Personal Data Protection Agency, as mandated in the Law on Personal Data Protection (PDP).
"The Ministry of Communication and Information acts as the data protection authority, this must refer to Government Regulation Number 71 of 2019 concerning the Implementation of Electronic Transaction Systems (PSTE), to ensure that there is no vacancy in compliance enforcement institutions in protecting personal data," he said.
SEE ALSO:
The alleged leak of NPWP data emerged after the founder of the Indonesian Ethical Hacker Teguh Aprianto uploaded a screenshot of the Breach Forums site.
Through the @secgron X account, he said as many as six million NPWP data were traded on the site by an account named Bjorka on September 18, 2024.
Apart from NPWP, data that was also dragged, including NIK, address, telephone number, electronic mail (email), and other data. The selling price of all the data reached Rp150 million.