Kominfo Asks KreditPlus To Follow Up On Data Leakage Cases For 819,976 Customers

Director General of Kominfo Informatics Applications, Semuel Abrijani Pangerapan (doc. Kominfo)

JAKARTA - The Ministry of Communication and Informatics (Kominfo) has responded to the alleged leakage of KreditPlus customer data in a hacker forum. Similar to the Tokopedia case, Kominfo asked the management to carry out an internal investigation.

The Director General of Kominfo Informatics Applications, Semuel Abrijani Pangerapan, said that his party had asked for clarification and reports from the Credit Plus management regarding the alleged breach data that resulted in customer data leakage.

"We have written to Kreditplus to clarify this matter and at the same time report to Kominfo regarding this leakage issue," said Semuel in his official statement, Tuesday, August 4.

The man who is familiarly called Semmy emphasized that as an Electronic System Operator (PSE), KreditPlus has the obligation to comply with the Personal Data Protection Standards contained in Government Regulation Number 71 of 2019 concerning Electronic Systems and Transactions, as well as Regulation of the Minister of Communication and Information Number 20 of 2016 concerning Protection of Personal Data in Electronic Systems.

Not only that, asking KreditPlus to carry out a thorough investigation to ensure the security of user data. Semuel also appealed to the public to maintain the security of their respective accounts.

"People should regularly change passwords and not easily trust other parties asking for passwords or OTP codes," said Semmy.

Previously it was reported that the data from KreditPlus had actually been shared for a long time in mid-July. Precisely July 16th and was uploaded by a member of the raid forums under the name “ShinyHunters.”

896 thousand data belonging to KreditPlus were leaked and sold. The leaked data includes: - Name- KTP- Email- Password- Address- HP number- Job data- Data of guarantor family KreditPlus itself is a financial company registered and supervised by @ojkindonesia. pic.twitter.com/wQILwthye1

- Teguh Aprianto (@secgron) August 3, 2020

Users who want to see the leaked data are required to pay for it first. After paying, you will be directed to download a file containing hundreds of thousands of creditplus customer data.

After the file is opened, 819,976 customer data will appear starting from the name, KTP, email, employment status, address, family data of the loan guarantor, date of birth, telephone number, and others.