Cyber Security Expert Reveals The Reasons Behind The Disappearance Of BRI LIfe's Customer Data Seller Posts

JAKARTA - Recently, the social media world was shocked again by the leak of BRI Life insurance customer data. Interestingly, the data sold on the Raid Forums site suddenly disappeared.

Cybersecurity expert Alfons Tanujaya revealed the reason behind the disappearance of the BRI Life data seller's post on the site.

"There are many possibilities for the disappearance of the post. It could be that the perpetrators are afraid because this data leak has gone viral and has become the focus of attention of many people so that the perpetrators are afraid of being caught by the authorities because intruding on a computer system without permission is an unlawful act," said Alfons in his official statement, Sunday, August 1st.

"Or for other reasons, for example, there are parties who secretly buy the data and are willing to pay more if the business of selling the data is stopped," he added.

While it is known, an account named Reckt is reported to have sold a customer database of more than 2 million BRI Life Insurance customers with a size of 410 MB and scanned documents of more than 463 thousand with a file size of 252 GB. He sold it at a price of 7,000 US dollars or the equivalent of Rp100 million.

The data includes ID cards, family cards, NPWP, photos of bank account books, birth certificates, death certificates, letters of agreement, proof of transfers, proof of finances, proof of health certificates such as ECG, diabetes, and others.

Alfons also said that whatever the case may be, this provides a slight advantage for hacking victims because the leaked data is no longer for sale.

"Another luck in this case, is because the amount of money requested for this data is only US $ 7,000 or Rp100 million. And maybe by adding a certain amount, the seller is willing to withdraw the sale of the data from the forum, in the hope that this seller is the sole owner of the data. that are sold and the data is not obtained from third parties," said Alfons.

However, according to Alfons, if the data falls into the hands of heavyweight extortionists like many US companies, then the case will be different because the ransom demanded is very large and the extortionist will not hesitate to spread the data he has obtained if the victim is not willing to pay the amount. the money he asked for.

"Therefore, it is very important to be disciplined in maintaining the database server, especially those exposed to the internet. If possible, the database should not be stored on a web server and access from the web to the database server is limited and monitored in such a way as to be safe from exploitation," explained Alfons.

Especially for servers that process critical databases, it is recommended to be encrypted to avoid access extortion so that if a data leak occurs, the data that has been successfully copied will also remain unreadable because it is encrypted.

"As long as you remember to protect the encryption server well because if the decryption key is successfully mastered by hackers, then all encryption protection will be useless because the data will be able to be opened," said Alfons.