Expert on Major Data Leaks: Baby Boomers Should Not Manage Crucial Data - Sci En.tempo.co
Expert on Major Data Leaks: Baby Boomers Should Not Manage Crucial Data
Translator
Ricky Mohammad Nugraha
Editor
Laila Afifa
8 September 2022 20:36 WIB
illustration of internet data leak. Photo: Pixabay
TEMPO.CO, Jakarta - Indonesia was stunned by two recent major data leaks. The first incident saw 1.3 billion SIM card registration details leaked online by hackers and the second case was when 105 million citizenship information was leaked on an online forum. The SIM card registration data-keeping is managed by the Communication and Informatics Ministry (Kominfo) while the General Elections Commission (KPU) is responsible for the second case.
Tempo asked cybersecurity and digital forensic expert from Vaksincom, Alfons Tanujaya on Wednesday, September 7, where he provided some suggestions for the government. “One of the many suggestions is that the government must fix its data management,” he said.
He bluntly suggested that stakeholders in the government’s cyber security sector should prioritize millennials or younger generations in managing the plethora of sensitive data. "Not baby boomers who are generally clueless and don't understand how to properly utilize and protect big data," Alfons added.
The two data leaks were carried out by the same person or group, Bjorka, who leaked the data and sold it on the online forum called Breached Forums or Breached.to. The hacker claimed to have 87 GB of data from 1,304,401,300 SIM card registrations which contain NIK or citizenship identification numbers, phone numbers, and more personal data.
The data is also suspected to have been traded on one of the hacker sites as Bjorka claimed to have shared 2 million sample data that had been collected from 2017 to 2020. A number of names of telecommunication operators were revealed in the data displayed by Bjorka, namely Telkomsel, Indosat, Tri, XL, and Smartfren.
Following that on September 6, the hacker claimed to have leaked data containing 105,003,428 personal information from KPU.
The Communications and Informatics Ministry believes that there is an alleged crime committed in the aforementioned cases. They also announced a partnership with National Police’s cybercrime unit to look into the case.
Meanwhile, the director general of application informatics Semuel Abrijani Pangerapan said that cellular operators must maintain the secrecy of their users’ personal data as regulated under Law No.11/2008 on information and electronic transactions.
He added that the leak of 1.3 billion personal data is not something that can be put aside. Therefore, Semuel asserted that in addition to administrative sanctions to those managing the data for not securing the data well, criminal sanctions must also be imposed as there is a third party that steals and spread the data.
Translator
Ricky Mohammad Nugraha
Editor
Laila Afifa
8 September 2022 20:36 WIB
illustration of internet data leak. Photo: Pixabay
TEMPO.CO, Jakarta - Indonesia was stunned by two recent major data leaks. The first incident saw 1.3 billion SIM card registration details leaked online by hackers and the second case was when 105 million citizenship information was leaked on an online forum. The SIM card registration data-keeping is managed by the Communication and Informatics Ministry (Kominfo) while the General Elections Commission (KPU) is responsible for the second case.
Tempo asked cybersecurity and digital forensic expert from Vaksincom, Alfons Tanujaya on Wednesday, September 7, where he provided some suggestions for the government. “One of the many suggestions is that the government must fix its data management,” he said.
He bluntly suggested that stakeholders in the government’s cyber security sector should prioritize millennials or younger generations in managing the plethora of sensitive data. "Not baby boomers who are generally clueless and don't understand how to properly utilize and protect big data," Alfons added.
The two data leaks were carried out by the same person or group, Bjorka, who leaked the data and sold it on the online forum called Breached Forums or Breached.to. The hacker claimed to have 87 GB of data from 1,304,401,300 SIM card registrations which contain NIK or citizenship identification numbers, phone numbers, and more personal data.
The data is also suspected to have been traded on one of the hacker sites as Bjorka claimed to have shared 2 million sample data that had been collected from 2017 to 2020. A number of names of telecommunication operators were revealed in the data displayed by Bjorka, namely Telkomsel, Indosat, Tri, XL, and Smartfren.
Following that on September 6, the hacker claimed to have leaked data containing 105,003,428 personal information from KPU.
The Communications and Informatics Ministry believes that there is an alleged crime committed in the aforementioned cases. They also announced a partnership with National Police’s cybercrime unit to look into the case.
Meanwhile, the director general of application informatics Semuel Abrijani Pangerapan said that cellular operators must maintain the secrecy of their users’ personal data as regulated under Law No.11/2008 on information and electronic transactions.
He added that the leak of 1.3 billion personal data is not something that can be put aside. Therefore, Semuel asserted that in addition to administrative sanctions to those managing the data for not securing the data well, criminal sanctions must also be imposed as there is a third party that steals and spread the data.
