Indonesia's biggest Islamic bank says customer data safe during data breach

Bank Syariah Indonesia (BSI), the largest Islamic bank in Indonesia, has reported a pontential breach, but reassures its customers that their data remains secure.

The bank is collaborating with regulatory authorities to enhance its cybersecurity measures in response to media claims that account information for 15 million customers had been exposed online. This incident is regarded as the most severe data breach within the country's financial sector, is part of a series of leaks that have occurred at Indonesian companies and government agencies in recent years.

While BSI has not explicitly confirmed the data leak, it has stated that it is taking steps to recover, conduct audits, and implement measures to prevent similar disruptions in the future. The bank has expressed confidence that customer data, funds, and transactions are safeguarded.

The bank experienced service interruptions on May 8, including disruptions to ATM withdrawals and online banking, which were resolved by May 9. The hacker group LockBit 3.0 claimed responsibility for the attack, asserting that it accessed BSI's data on May 8 and published it online on Tuesday. The fears are that the leaked data can possibly include details such as bank account holders, numbers, balances, and transaction histories.

The Financial Services Authority of Indonesia has stated that it cannot definitively determine if a data leak occurred and is currently conducting a forensic examination.