Leaked and traded freely on the internet
Indonesia is again shocked by the leakage of personal data which now involves 279 million Indonesian population data. This data is strongly suspected to be related to BPJS Health data. How are you with the Personal Data Protection Bill (RUU PDP)?
The PDP Bill seems to have become a necessity that is needed in line with the massive use of the internet. Internet expert Pratama Persadha questioned the PDP Bill, which until now has not been discussed again by the Indonesian Parliament and the Government until the regulation was passed.
Indonesia is a country with low cyber security awareness
According to Pratama, strengthening the system and Human Resources (HR) must be increased, the adoption of technology primarily for data security also needs to be done.
Indonesia itself is still considered prone to hacking because cyber security awareness is still low. The most important thing is the PDP Law is needed which is firm and strict like in Europe. This is a major factor, because there are many major hacks in the country that target personal data theft.
"In principle, this personal data is indeed the target of many people. It is very dangerous if the data is leaked from the BPJS Indonesia. Because the data is valid and can be used as raw material for digital crimes, especially banking crimes. From this, criminals can use this data to make fake personal ID cards and then break them down. victim's account, "he said.
Sadly, there is no law on personal data protection in Indonesia
He conveyed, the data leaked incident should not be repeated. Therefore, the presence of the Personal Data Protection Law is very necessary, provided, said the Chairman of CISSReC, it has a strong article and aims to secure public data.
"Data from the leaked files can be used by criminals. By carrying out targeted phishing or other types of social engineering attacks (Social Engineering). Even though the files are not found very sensitive data such as credit card details, with some existing personal data cyber criminals are enough to cause real damage and threats, "said Pratama,
 |
Indonesia is an easy country for the target of cyber-droppersHe explained that criminals can combine the information found in the leaked CSV file with other data breaches to create detailed profiles of their potential victims such as data from the Indonesia online store like Tokopedia, Bhinneka, Bukalapak and others leaks. With such information, criminals can carry out phishing and social engineering attacks that are much more convincing to their victims. "What is clear is that no system is 100% safe from the threat of hacking or other forms of cyber attacks. Being aware of this, it is necessary to create the best system and be run by the best and competent people so that they can always carry out security with high standards. "emphasized Pratama. He added that this kind of data leakage incident should not have occurred in the data compiled by the state. It is better if from now on all government agencies must cooperate with BSSN to conduct digital forensic audits and find out which security holes exist. This step is very necessary to avoid data theft in the future. "The Indonesia government is also obliged to carry out a system test or Penetration Test (Pentest) periodically to all government institution systems. This is a preventive step so that weaknesses can be found from the start that must be corrected immediately," he explained. |