Data 279 Juta Peserta BPJS Diduga Bocor, Pengamat: Ada Kelalaian Pengelolaan Sistem Keamanan
Summary
TLDRA significant data breach has been reported, compromising the personal information of 279 million Indonesian citizens. The data, which includes sensitive details such as ID numbers, phone numbers, and salaries, is suspected to have been leaked by the Indonesian health social security body, BPJS Kesehatan, and sold on foreign websites. Cybersecurity expert Ardi Sutedja suggests that the leak may have occurred due to human error in managing the institution's data security system. BPJS Kesehatan has launched an investigation to trace the source of the leak, while the government's communication staff, Dedi Permadi, is currently unable to provide further comments on the matter.
Takeaways
- 🚨 A massive data leak has occurred involving 279 million Indonesian citizens' data.
- 🏥 The data is suspected to be from the Indonesian social security health organization, BPJS Kesehatan.
- 🌐 The leaked data includes sensitive personal information such as ID numbers, phone numbers, emails, full names, addresses, and salaries.
- 🔗 The data was reportedly sold on a foreign website, Richforum.com, and has gone viral on social media.
- 👤 Cybersecurity expert Ardi Sutedja suggests the leak has likely been happening for a while due to human resource mismanagement in data security systems.
- 🏢 Ardi believes it's unlikely that government or private institutions would intentionally leak customer data, but it could harm the institution itself.
- 💡 The expert points out that there are likely vulnerabilities in the systems, such as computers or servers, that have been exploited.
- 🔎 There is an emphasis on the need to investigate the weaknesses within the data security ecosystem.
- 🔍 BPJS Kesehatan has released a statement saying they are investigating the origin of the leaked data.
- 👮♂️ BPJS Kesehatan has deployed a special team to track down and identify the source of the data leak as quickly as possible.
- 📢 In response to the data leak, a spokesperson from the Indonesian Ministry of Communication and Information Technology stated that the investigation is ongoing and could not provide further comments at this time.
Q & A
What is the reported data breach incident?
-A data breach incident involving 279 million Indonesian citizens' data, including personal details such as ID numbers, phone numbers, emails, full names, addresses, and salaries, is suspected to have been leaked and sold on foreign websites.
Which organization is suspected of having leaked the data?
-The data breach is suspected to involve the Indonesian social security health organization, known as BPJS Kesehatan.
Where was the leaked data reportedly sold?
-The leaked data was reportedly sold on a forum website named Rich forum.com.
What kind of data was included in the breach?
-The breached data included sensitive personal information such as KTP (Indonesian ID card) numbers, phone numbers, emails, full names, addresses, and salaries.
What is the opinion of cyber security expert Ardi Sutedja regarding the breach?
-Ardi Sutedja suggests that the breach may have started a long time ago due to negligence in managing customer data security systems within an institution, rather than a deliberate leak by government or private organizations.
What are the potential risks to the institution from such a data breach?
-Ardi Sutedja indicates that such a breach could harm the institution itself by revealing vulnerabilities in their computer systems and potentially leading to further exploitation.
What actions has BPJS Kesehatan taken in response to the data breach?
-BPJS Kesehatan has deployed a special team to track down and identify the source of the leaked data as quickly as possible.
How many participants does BPJS Kesehatan have?
-BPJS Kesehatan has approximately 222.2 million participants.
What is the response from the Indonesian Ministry of Communication and Information Technology regarding the breach?
-The Ministry, represented by Dedi Permadi, has acknowledged the incident and stated that it is still under investigation, with no further comments available at the moment.
What is the significance of the data breach for Indonesian citizens?
-The breach is significant as it involves a large portion of the Indonesian population, potentially exposing them to identity theft and other forms of cybercrime.
What measures should institutions take to prevent such data breaches?
-Institutions should invest in robust cybersecurity measures, regularly update their systems, and train their staff to handle sensitive data securely to prevent future breaches.
Outlines
🔒 Data Breach of 279 Million Indonesians
A data breach has reportedly occurred involving the personal information of 279 million Indonesian citizens, including sensitive details such as ID numbers, phone numbers, email addresses, full names, and even salaries. The data is suspected to have been leaked and sold on foreign websites. An individual on a forum, specifically Rich forum.com, has been selling this information, which has now gone viral on social media. Cybersecurity expert Ardi Sutedja suggests that such breaches have likely been happening for a while due to negligence in managing customer data security systems. He emphasizes that it is unlikely for government or private institutions to intentionally leak private customer data, but rather, it is the exploitation of existing security flaws by hackers. The weaknesses in computer systems, especially in smaller institutions that may not have invested sufficiently in technology, are targeted. The BPJS Health, an Indonesian social security administration, has released a statement saying they are investigating the matter and have deployed a special team to trace and identify the source of the leak. BPJS Health has also stated that they have 204 million participants, and they are taking the issue very seriously.
Mindmap
Keywords
💡Data Breach
💡BPJS Kesehatan
💡Cybersecurity
💡Personal Data
💡Rich Forum
💡Human Error
💡Data Security System
💡KTP (National Identification Number)
💡Investigation
💡Cybercrime
Highlights
Data breach involving 279 million Indonesian citizens' data suspected.
Indonesia's health social security body, BPJS Health, potentially affected.
Data includes sensitive personal information such as ID numbers, phone numbers, and salaries.
Data was reportedly sold on a foreign website, Rich forum.com.
The sale of the data has gone viral on social media.
Cybersecurity expert Ardi Sutedja suggests the breach has been ongoing for some time.
Ardi Sutedja points out human resource negligence in managing customer data security systems.
It is unlikely for government or private institutions to intentionally leak customer data, according to Ardi.
The breach could harm the institution itself by exposing its security flaws.
Ardi highlights the need to look into the institution's computer systems for vulnerabilities.
The weakness in data security ecosystems must be investigated.
BPJS Health releases a statement saying they are investigating the origin of the leaked data.
BPJS Health has deployed a special team to track down the source of the leak.
The number of BPJS Health participants is stated to be 222 million.
BPJS Health's spokesperson, Iqbal Anas, confirms the investigation is ongoing.
Dedi Permadi, a special staff member at the Ministry of Communication and Informatics, responds to the data breach.
The investigation into the data breach is still in its early stages, with no further comments available yet.
Transcripts
Ayo kita kesurupan lain di Kompas Pagi
Saudara kebocoran data kembali terjadi
kali ini data 279 juta penduduk
Indonesia beserta badan penyelenggara
jaminan sosial kesehatan atau BPJS
Kesehatan diduga bocor dan
diperjualbelikan di situs asing
Hai data mencakup nomor induk
kependudukan atau KTP nomor telepon
email nama lengkap alamat hingga gaji
data tersebut dijual oleh pengguna forum
di situs Rich forum.com dan kini viral
di media sosial menurut pengamat
keamanan cyber Ardi sutedja kebocoran
ini telah dimulai sejak lama karena
tidak mungkin terjadi dalam waktu
singkat Ardi menjelaskan ada kelalaian
sumber daya manusia dalam pengelolaan
sistem keamanan data nasabah dalam
sebuah lembaga karena menurutnya tidak
mungkin lembaga pemerintah atau swasta
sengaja membocorkan data pribadi
nasabahnya namun hal ini menurut Ardi
bisa merugikan lembaga itu sendiri
nge-rap ia melihat celah-celah yang ada
di dalam mesin bis istimewa apa sistem
komputer Mac eye lembaga yang diretas
Pirate kemangi ke-2 kelemahannya tapi
tema pasti ada juga unsur orangnya
lengkapnya kondisi Apa sdm-nya itu yang
biasa dicari ya nggak mungkin orang
lantas bisa menerobos suatu sistem
keamanan jaringan komputer Yao server
besar gitu ya tanpa abke faktor manusia
ini bukan lembaga-lembaga games buahnya
kecil ya mereka pasti juga sudah apa
menanamkan investasi di bidang teknologi
yang cukup besar kalau sudah lakukan hal
semua ini jadi apa yang menjadi
kelemahan di dalam Sepatu apa di dalam
ekosistem pengamanan data mereka ini
harus ditelusuri Apakah benar itu BPJS
Aku bukan dikit nggak tahu yang jelas
data sudah bocor ya tidak ragu naik
mencari tahu apa kasak-kusuk teknik
Angeles
Indonesia
Hai BPJS merilis surat keterangan yang
menyebut Tengah menelusuri lebih lanjut
apakah data yang bocor berasal dari
lembaganya atau bukan kepala humas BPJS
Kesehatan Iqbal Anas menyebut bahwa
jumlah peserta BPJS kesehatan adalah 22
suami 222.com A empat juta jiwa BPJS
Kesehatan telah mengerahkan tim khusus
untuk sesegera mungkin melacak dan
menemukan sumbernya
hai hai
hai hai
Hai menanggapi kebocoran data penduduk
Indonesia yang diduga dari situs BPJS
Kesehatan Dedi Permadi selaku staf
khusus menkominfo menjawab melalui pesan
singkat masih sangat Dini sedang
diselidiki kami belum bisa komentar
lebih banyak
5.0 / 5 (0 votes)