Cases Of Jokowi Era Data Leaks: From Private Companies, BUMN Companies, Data Owned By State Institutions

Illustration of the personal data leak ( Kevin Ku on Unsplash)

YOGYAKARTA Cases of personal data leakage in the Jokowi era continue to occur. The public continues to highlight this because several times occurred. Criticism is not only addressed to the President, but also to the Minister of Communication and Information Johnny G. Plate.

The following is a summary of some of the personal leaks that have occurred since 2019 until now summarized by VOI for you.

In May 2020, the public was shocked by the leakage of personal data over 13 million Bukalapak accounts traded on the RaidForums hacker forum by a seller of the Asian Boy account name.

The Bukalapak data that is displayed is quite detailed, starting from email, username, password, last login, Facebook email with hash, user address, birthday date, to phone number.

Not long ago from the data leak of Bukalapa, 1.2 million consumer personal data Bhinneka.com and user data of 9 other companies were again sold by RaidForums for US$ 1,200 or equivalent to Rp. 18 million. The data was obtained by hackers who named themselves ShinyHuners.

Responding to this, Bhineka immediately carried out an internal investigation. They also coordinate with the National Cyber and Crypto Agency (BSSN).

In the same month, May 2020, KPU voter data was leaked again. The data is also sold on the hacking forum. The leak was revealed by Israel's cybersecurity consultant, Under the Breach. The data sold includes name, address, NIK, to KK number. After being traced, the data was voter data in 2013.

Raid Forums user "Database Shopping" claims to sell data containing a list of 230 thousand Indonesian citizens related to Covid-19. The incident occurred in June 2020. The leak of COVID-19 data offered contains the date of report, name, nationality, gender, age, telephone number, residential address, type of contact, case relationship, initial date of risk, date of illness, date of outpatient, date of outpatient care, date of hospitalization, date of hospitalization, date of illness, date of sampling, date of sample send, date of results, date of final results, date of rapid test, rapid test results, PCR test date, to PCR test results.

The founder of the Indonesian Ethical Hacker Community, Teguh Aprianto, revealed the alleged leak of data from members of the National Police through his social media in June 2020. He also uploaded a screenshot containing personal information from a member of the National Police which includes photos of himself, a history of positions, and rank.

Regarding this data, Hojatking's account claimed that he managed to break into the data on May 31, 2020, then sold it with a haha equivalent to Rp. 17 million.

The BPJS Health data leak occurred in May 2021, where a RaidForums user named Kotz sold data containing Indonesian people's personal information that includes email, NIK, salary, cell phone number, and even address. Kotz claimed he got the data from the bpjs-sehat.go.id website.

Data from users of the Electronic Health Alert (e-HAC) application made by the Ministry of Health (Kemenkes) was allegedly leaked on July 15, 2021. Quoted from Kompas, from a search conducted by VPNMinister cybersecurity researchers, the leak happened to 1.3 million application user data.

The Twitter account @UnderTheBreach revealed the alleged data leak of BRI Life insurance company customers on June 27, 2021. The account says there are about 2 million customers with around 463,000 documents stolen. In addition, 30 minutes of demonstration videos are included that display the data that has been obtained. The data is in the form of ID cards, accounts, taxpayer numbers, birth certificates, to medical records.

One of RaidForums users, C77 offered KPAI data in October 2021. The account also provides data samples as evidence that they really have the data. The data sold contains names, identity numbers, citizenship, telephone numbers, religion, occupation, education, and gender.

The hack by Bjorkan has been the subject of attention to this day. He claims to have hacked some data, ranging from IndiHome data, SIM registration data, even President Jokowi's correspondence documents. Until now, the Government has not been able to complete the data leak made by Bjorka.

Those are some cases of personal data leakage during the Jokowi era with Johnny G. Plate as Minister of Communication and Information. To get other interesting information, visit VOI.ID.