CISSReC: Melirik Potential Disruption Of Banking Services At BSI Bank

JAKARTA - Bank Syariah Indonesia (BSI) experienced disruptions to its services, both online banking and automated teller machines (ATMs) some time ago.

Responding to this, cybersecurity expert Dr. Pratama Persadha explained that there were indications such as the ransomware attack that hit BSI.

"If only service disruptions due to technical problems or routine maintenance will only take hours, not like this. This is indeed similar to the result of cyber ransomware attacks," said Pratama Persadha as chairman of the cyber security research institute Communication & Information System Security Research Center (CISSReC) in a statement on Sunday, May 14.

Pratama also added that there are currently claims from Lockbit 3.0 that the ransomware gang is responsible for the disruptions that occurred at BSI earlier this week. Lockbit itself is a ransomware gang that started actively operating in 2019.

Lockbit 3.0 claims that they have managed to steal 1.5 terabytes of personal data from the BSI server.

Lockbit gave a deadline until May 15, 2023 at 21:09:46 UTC.

If up to that time the victim does not provide a ransom, the database will be leaked.

However, paying the ransom does not guarantee that we will get the key to opening encryption files and their hacker gangs don't sell the data they steal.

However, he added, it is better to wait for the official results of the audit and digital forensic investigation conducted by BSI in collaboration with relevant authorities such as BSSN or BIN Cyber Intelligence.

"All PSE, not only BSI, should also have Business Continuity Management (BCM), so that they know the procedures that must be carried out if the main service system is disrupted," explained Pratama.

According to him, the readiness of this ICT should be planned, implemented, maintained, tested and simulated repeatedly, based on business continuity targets and ICT continuity requirements.

"Among them are the backup and recovery data processes. What is also important for PSE to do is periodically conduct assessments of cybersecurity from the system they have," said the man who is also a lecturer at STIN.

Considering that it is not known for certain whether or not the BSI data theft was carried out by the Lockbit gang, Pratama appealed to customers to always be vigilant and careful, take preventive steps by changing all credentials in BSI such as mobile banking passwords, ATM pins, etc.