Cyber Incident Victim: Bank Jatim

On or around October 1, 2021, PT Bank Pembangunan Daerah Jawa Timur Tbk (Bank Jatim) faced reports of a potential database leak, prompting immediate action from the institution. The bank publicly addressed the incident on October 22, 2021, confirming that cybercriminals had breached a supporting application system while emphasizing that their core banking system remained uncompromised. Director of IT & Operations Tonny Prasetyo stated the bank initiated forensic analysis and investigation upon learning of the breach, with preliminary findings indicating no compromise to customer data integrity. Bank Jatim maintained throughout the incident that standard banking operations and financial services continued unaffected, advising customers they could safely conduct transactions through mobile and internet banking platforms (JConnect). The institution coordinated with Indonesia's National Cyber and Crypto Agency (BSSN), with whom it had previously collaborated to implement cybersecurity standards prior to the incident.

Bank Jatim's response focused on assuring customers about ongoing transaction security while strengthening data protection measures against future cyber threats. The forensic investigation confirmed the attack targeted non-core systems, limiting potential exposure of critical banking infrastructure. No operational disruptions or service interruptions occurred according to official statements. The bank emphasized its existing cybersecurity partnership with BSSN as part of its risk mitigation strategy while expanding these protective measures post-incident. Customer communications directed users toward digital channels without indicating any recommended security actions beyond normal banking practices. Resolution efforts involved coordination with multiple stakeholders, though specific remediation steps beyond forensic analysis weren't detailed publicly. The institution maintained its position that customer assets and data remained secure throughout the incident lifecycle.