Financial Crime World

Fraudulent Activities on the Rise in Indonesian Online Banking

JAKARTA, INDONESIA - A recent report by SOCRadar has highlighted the growing threat of fraudulent activities in Indonesia’s online banking sector. The report analyzed data from open threat sharing platforms and comprehensive monitoring capabilities to identify the increasing number of phishing attacks, exposed credentials, and ransomware threats targeting Indonesian companies.

Phishing Attacks on the Rise

The report found that nearly 20,000 phishing attacks targeting Indonesian companies have been detected since the start of 2021, a 38% increase from last year. This surge in phishing attacks highlights the need for increased vigilance and cybersecurity measures to protect against these threats.

Exposed Credentials and Passwords

Moreover, SOCRadar identified more than 1 billion exposed credentials, with most depending on plaintext passwords in Indonesia. This is a significant concern as it makes it easy for attackers to gain unauthorized access to sensitive information.

Nation-State-Sponsored Actors and Ransomware Gangs

The report also found that 24 APT groups have targeted leading organizations in various industries, including energy, telecommunications, high-tech, and finance. Additionally, ransomware gangs such as REvil, Conti, Avaddon, and LockBit have been observed targeting Indonesian companies and public institutions.

Dark Web Underground Ecosystem

SOCRadar’s analysis revealed that the dark web underground ecosystem has become a major communication channel and global marketplace for threat actors. The report detected more than 60 posts related to Indonesian entities on the dark web, with:

  • 10% being ransomware threats
  • 15% being unauthorized network access sales
  • Over 50% being database sharing

Major Dark Web Incidents in Indonesia

The report highlighted several major dark web incidents in Indonesia this year, including:

  • A data leak of over 270 million Indonesian citizens’ personal information
  • A data breach at BRI Life Insurance affecting over 2 million users

Ransomware Attacks

Ransomware attacks have become increasingly sophisticated, with gangs now using double extortion tactics to extort victims. The report identified top ransomware gangs targeting Indonesia, including LockBit, REvil, Avaddon, and others.

State-Sponsored APT Activities

State-sponsored APT activities have also been a major concern in Indonesia, with multiple groups targeting the country’s government, military, and private sectors. The report identified 28 APT groups that have targeted Indonesia, including China-backed hacking groups APT17 and APT41.

Recommendations for Improving Cybersecurity

The report concluded by emphasizing the importance of prioritizing vulnerabilities to reduce the public attack surface and recommended checking technologies for unpatched, critical, exploited vulnerabilities. To stay ahead of these threats, it is essential for organizations to implement robust cybersecurity measures and educate employees on online safety best practices.

Full Report Available

The full report is available [here](insert link).