Jakarta (ANTARA) - State-owned electric company PT PLN (Persero) has acted quickly to investigate allegations of a customer data leak to ensure the safety of its database and make sure it has not been invaded by external parties.

PLN is continuing to coordinate with the Communication and Information Ministry and the National Cyber and Encryption Agency (BSSN) to determine the source of customers' data that was circulated on the Internet, PLN spokesperson Gregorius Adi Trianto informed.

At the same time, the company is striving to bolster security, he said here on Saturday.

Until Saturday noon, PLN had examined the main data center through the system using various parameters. The results showed that everything was safe.

The data seen on social media is a replication of customer data that is general in nature and has been taken from the customers’ data dashboard application for data analytics purposes, he explained.

"The data is not actual customer transaction data and is not updated, so it is estimated to not have a major impact on the customers," he said.

"In general, the electricity service to customers has not been disrupted," he added.

PLN has and continues to implement layered security along with BSSN to provide security with the purpose of strengthening and protecting customers' data.

In accordance with the applicable stipulation, PLN, as an electronic system organizer (PSE), is continuing to process the matter further with the help of the Communication and Information Ministry.

The company is following up on recommendations to complete the investigation and take collective improvement steps so that personal data can continue to be protected.

Communication and Information Minister Johnny Gerard Plate has urged PLN to make a report by filling an Incident Response Form related to the alleged leak of 17 million user data on the website breached.to.

If a problem is found and a data leak is confirmed, then the ministry will provide a recommendation from the audit.

Earlier, a screenshot showing a webpage of breach.to related to the alleged leaked PLN data was circulated among the public and social media on Thursday (August 18, 2022).

As per reports, an account named Loliyta had uploaded more than 17 million PLN datasets with field IDs, customer IDs, customer names, customer addresses, energy types, kWh, meter numbers, to meter types.

Related news: Ministry still probing allegations of PLN data leak
Related news: Personal Data Protection Bill's ratification in September: DPR






Translator: Sugiharto P, Fadhli Ruhman
Editor: Rahmad Nasution
Copyright © ANTARA 2022