Indonesian PLN Data 17 Million

More than 17 Millions PLN Data is Listed for Sale on Hacker Forum

Indonesia is in the midst of yet another major data breach scandal, this time involving state utility firm PLN as well as numerous other companies based in the country.

lleged data leaks have occurred again in Indonesia. This time, more than 17 million customer data of PLN or the State Electricity Company were sold on the breached.to hacker forum.

The information was shared by a Twitter user @F2aldi. From the screenshot shared, it shows the breached.to page which contains an account called Loliyta claiming to sell PLN customer data.

The user claimed, contained the private data of more than 17 million PLN customers, including their names, addresses, and power consumption. The user did not specify an asking price for this breach.

“Hi, I’m selling data PLN 17 MILLION++ with field ID,Idpel, Name, Consumer Name, Energy Type, Kwh, Address, Meter No, Unit Upi,Meter Type, Name of Upi Unit, Unit Ap, Unit Name, Unit Up, Unit Name Up, Last Update, Created At,” wrote the seller, quoted by Protergo Admin, Friday (21/8/2022).

Another user posted a listing for 347GB of confidential documents from 21.7 thousand domestic and multinational companies in Indonesia. Among these, the user said, were “Microsoft, AT&T, CSCEC, PwC, China Railway Group Limited, Huawei Tech Investment, McKinsey, Prudential Life Assurance, and more.” The user set a US$50 thousand asking price for this breach.

The Information and Communications Ministry (Kominfo) said today that it is looking into the reported data breaches.

A common sentiment among netizens online is of helpless resignation, as major data breaches like these have been all too common in Indonesia in recent years. Many lamented how calls for a comprehensive law on data protection have largely gone ignored. 

The Personal Data Protection Bill, which aims to be just that, has stalled in parliament since 2014.

Indeed, there have been no apparent long-term commitments to strengthen cybersecurity in the country following massive data breaches in the past, including a social security data leak of 279 million people (including the deceased) in May 2021 and how the data of 91 million users of e-commerce platform Tokopedia were traded online in June 2020.

Leave a Comment

Your email address will not be published.