Around 1.5 terabytes of BSI internal data, including 15 million customers and employee information, has been stolen. Yet, mobile BCA interference is only due to system maintenance actions.
Heaptalk, Jakarta — Bank Syariah Indonesia (BSI) has been stricken by cyber-attacks for several days, impacting disruption in its overall services. As it is known, the interruption was allegedly caused by ransomware, a type of Malware virus that attacks devices with file encryption systems.
The hacker group, namely Ransomware LockBit 3.0, is known to steal around 1.5 terabytes of the BSI internal data has been stolen, including 15 million customer and employees information (phone numbers, addresses, names, document information, account numbers, card numbers, and transactions), financial and law documents, NDA, and password. The ransomware hacker group claims to have stolen internal data since May 8th, 2023, causing the service to stop operating.
In response to this issue, the President Director of BSI, Hery Gunardi, revealed that banking services usually start and can be used for customer transactions. He claimed BSI began to find indications of suspected cyber attacks that made them need to turn off the system to ensure its security. However, This allegation requires further verification through audits and digital forensics with related parties. According to him, the company has made efforts to normalize BSI services.
“On behalf of BSI, we apologize for the customer inconvenience due to problems accessing BSI services,” added Hery.
To resolve the problem, BSI company has taken normalized action for its services and network of Automation Teller Machines (ATM) and branch offices. As a result, customers can make transactions at BSI’s branch network and ATMs throughout Indonesia. In addition, BSI mobile services can also be accessed.
Concurrently, a mobile application of BCA Bank has also encountered trouble since Sunday morning (5/14). However, according to EVP Corporate Communication and Social Responsibility, Hera Haryn explained that the issue is part of the BCA system and network maintenance move, expecting to uplift its service for customers to gain in performing their transactions securely and reliably.
“After the stabilization process after system maintenance, BCA mobile can operate normally. Currently, BCA mobile has returned to normal. We apologize for the inconvenience and trouble that has occurred,” Hera said.
A cyber security expert from Vaksincom, Alfons Tanujaya, also considers that the disruption experienced by BCA mobile banking services does not indicate a recent cyber attack like Bank Syariah Indonesia faced.
“If an attack hits the BCA banking services, all services, including M-banking service, internet banking, ATM, and tellers, should be paralyzed. I observe this matter is not a database or core system interference. The database can be accessed; the problem only comes from its m-banking service. If the encryption hits the data, customers could not access all the services,” affirmed Alfons, cited in Beritasatu.
