The notorious hacker known as Bjorka, who caused chaos in Indonesia in 2022 and 2023 amidst the ongoing Covid-19 pandemic, has resurfaced with a new target in mind. Bjorka recently announced through an X account that several private and state-owned banks in Indonesia, including BCA, BNI, BSI, Bank Mandiri, and the Central Bank (BI), are the next potential victims of ransomware attacks.
Ransomware is a malicious software that encrypts user data on network devices or computers, making it inaccessible to the rightful owners. Bjorka’s threats towards the Indonesian banks have raised concerns regarding cybersecurity in the financial sector of the country.
In a tweet on Wednesday, February 5, 2025, the Bjorka account warned @BankBCA about the possibility of a massive data breach if immediate action is not taken. Despite initial denial from BCA regarding leaked script data, Bjorka insisted that the banks should be prepared for ransomware attacks. The hacker claimed that the ransomware group already has access to a large amount of customer data, including databases from BCA and BSI.
Additionally, Bjorka shared a screenshot of an account named ‘Sky Wave’ selling alleged BCA customer data on the dark web, further raising concerns about potential data breaches. The response from BCA came in the form of reassurance to customers that their data remains secure, along with a reminder to stay vigilant against fraudulent attempts to obtain personal banking information.
The ongoing threat from Bjorka is not new, as the hacker has been involved in multiple data leak cases in the past. The leaked information reportedly originated from various government or state institution applications, including data from Indihome customers, PLN, Jasa Marga, phone card data, KPU, President Jokowi’s secret documents, personal data of officials, Indonesian Police data, and MyPertamina.
These leaks have raised concerns about the vulnerability of sensitive information in Indonesia’s digital infrastructure and the potential for exploitation by cybercriminals. Telecommunication operators such as Telkomsel, Indosat, Tri, XL, and Smartfren have also been named in Bjorka’s data leaks, indicating the widespread impact of these security breaches.
As authorities and businesses in Indonesia continue to grapple with cybersecurity threats, it is essential to prioritize the protection of sensitive data and implement robust security measures to prevent future breaches. The escalating cyber threats from hackers like Bjorka underscore the urgent need for comprehensive cybersecurity strategies to safeguard Indonesia’s digital landscape.