CYBER SECURITY REACUALIZATION OF CUSTOMER DATA AND FUNDS IN THE OPTICS OF ELECTRONIC INFORMATION AND TRANSACTIONS
DOI:
https://doi.org/10.32493/rjih.v8i2.56552Keywords:
reactualization, cybersecurity, data and funds, bankAbstract
The technological transformation in the digital era has changed the paradigm of the banking world. Financial access is now inseparable from space, distance, and time, as it only requires the internet and sophisticated devices for every customer to make transactions. On the other hand, cyber security of customer data and funds is very risky to be hacked with various instruments and methods such as fishing, spam, ransomware to cause material losses, historically cyber attacks have been experienced by Bank Indonesia on January 21, 2022, Bank BSI May 2023 and most recently Bank BRI on December 18, 2024, but not transparently impacting customers. Customer protection is based on the regulation of Law Number 1 of 2024 concerning Electronic Information and Transactions and does not specifically regulate the protection of customer data and funds. The purpose of the research focuses on the practical order of cyber regulation in protecting customer data and funds, and the reactualization of the provisions of laws and regulations. The research method was carried out with normative juridical analysis with qualitative normative data analysis. The results of the study show first, the actual condition of cyber security today through the provisions of the ITE law has not been carried out comprehensively verified in the context of law enforcement the evidentiary instruments are inadequate, the jurisdiction of the authority limits the accessibility of cyber security law enforcement, there has been no case of buying and selling bank customer data that has been punished in the second court, the reactualization of cyber security data and funds can be carried out by strengthening the evidentiary instruments for Law Enforcement, Interpol cooperation between countries specifically for cybersecurity.
References
Books :
Muhammad, A. (2004). Hukum dan Penelitian Hukum, Bandung, Citra Aditya Bakti.
Indarta, Y. (2025). Cyber Law: Dimensi Hukum dalam Era Digital. Pustaka Galeri Mandiri.
Hendrayana, I. G., Suprayitno, D., Judijanto, L., Kosadi, F., Kusumastuti, S. Y., & Sepriano, S. (2024). E-Money: Panduan Lengkap Penggunaan dan Manfaat E-Money dalam Era Digital. PT. Sonpedia Publishing Indonesia.
Papers/Articles/Proceedings/Research Results :
Anand, G., Nugraha, X., & Putri, D. E. K. (2023). Formulasi penegakan hukum yang sistematis terhadap penyelesaian sengketa konsumen e-commerce terkait tidak dipenuhinya janji oleh pelaku usaha: Sebuah upaya mewujudkan perfect procedural justice. Jurnal Rechts Vinding: Media Pembinaan Hukum Nasional, 12(2).
Arbani, T. S., & Putri, A. H. (2024). Legal Evaluation Strategy to Bridging the Regulatory Gap in Facing Technological Developments and Globalization in Indonesia. Jurnal Rechts Vinding: Media Pembinaan Hukum Nasional, 13(3).
Aris, M. S., & Putri, D. E. K. (2024). Legal Audit sebagai Mekanisme Penyelesaian Disharmonisasi Peraturan Perundang-Undangan. Jurnal Rechts Vinding: Media Pembinaan Hukum Nasional, 13(1).
Ayyas, M., Fauzi, A., & Widodo, S. (2024). Studi Komparatif Teknik Analisis Keamanan Sistem Informasi e-Government: Penetration Testing VS Vulnerability Assessment. SATIN-Sains dan Teknologi Informasi, 10(1), 36-44.
Bindseil, U. (2019). Central bank digital currency: Financial system implications and control. International Journal of Political Economy, 48(4), 303-335.
Prahassacitta, V. (2023). SARANA PENAL DAN NON-PENAL DALAM MELINDUNGI KONSUMEN E-COMMERCE. Jurnal Rechts Vinding: Media Pembinaan Hukum Nasional, 12(2).
de Melo, L. P., Macedo Amaral, D., de Oliveira Albuquerque, R., de Sousa Júnior, R. T., Sandoval Orozco, A. L., & García Villalba, L. J. (2024). A Secure Approach Out-of-Band for e-Bank with Visual Two-Factor Authorization Protocol. Cryptography, 8(4), 51.
Denisa, A. P., Amirulloh, M., & Muchtar, H. N. (2023). Sertifikat Keandalan Privasi Sebagai Salah Satu Bentuk Pelindungan Konsumen Di Bidang Informasi Dan Transaksi Elektronik. Jurnal Rechts Vinding: Media Pembinaan Hukum Nasional, 12(2).
Destyarini, N. (2024). Ensuring Personal Data Protection in Telemedicine Services. Jurnal Dinamika Hukum, 24(2), 218-233.
Durianto, D., Hasana, D., Fareha, N., & Maharani, D. N. (2025). The Challenges of Sharia Fintech Regulation in Indonesia: A Global Comparative Analysis. Jurnal Hukum, 41(1), 19-30.
Edwards, D. J. (2024). Vulnerability assessment and penetration testing. In Mastering cybersecurity: Strategies, technologies, and best practices (pp. 371-412). Berkeley, CA: Apress.
Fadia, Y., & Nusantara, M. A. Z. (2023). Strengthening Anti-Money Laundering Framework in Online Banking: Bank Indonesia's Initiatives and Countermeasures. Jurnal Hukum, 39(2), 252-269.
Fitria, K. M. (2023). Analisis serangan malware dalam perbankan dan perencanaan solusi keamanan. Jurnal Informatika dan Teknik Elektro Terapan, 11(3).
Geva, B. (2020). Electronic Payments: Guide on Legal and Regulatory Reforms and Best Practices for Developing Countries. International Trade Centre.
Hammood, W. A., Abdullah, R., Hammood, O. A., Asmara, S. M., Al-Sharafi, M. A., & Hasan, A. M. (2020, February). A review of user authentication model for online banking system based on mobile IMEI number. In IOP Conference Series: Materials Science and Engineering (Vol. 769, No. 1, p. 012061). IOP Publishing.
Indu, I., Anand, P. R., & Bhaskar, V. (2018). Identity and access management in cloud environment: Mechanisms and challenges. Engineering science and technology, an international journal, 21(4), 574-588.
Istiyowati, L. S. (2018). Fitur-Fitur Layanan Internet Banking Pada Bank Di Indonesia. Jutisi: Jurnal Ilmiah Teknik Informatika Dan Sistem Informasi, 6(3), 1589-1600.
Jans, J. A. (2024). Anti-Money Laundering and the Allocation of Responsibilities Between Banks and Non-Banks. In Electronic Payments in the European Market: Creating a Level Playing Field between Banks and Non-Banks (pp. 195-229). Cham: Springer Nature Switzerland.
Kurniawan, F., Thalib, P., Subhan, M. H., Jansen, B., & Abd Ghadas, Z. A. B. (2023). Justice as a Meta Value of Corrective Justice in Providing Restitution for Unjust Enrichment: A Study on Rules, Norms, Principles, and Foundation. Jurnal Hukum, 39(2), 192-211.
Mallik, A. (2019). Man-in-the-middle-attack: Understanding in simple words. International journal of data and network science.
Mentari, N., Nugraheni, N., & Annas, M. (2023). Legal Protection of HARA Platform Users on the Service of Electronic Data Interchange. Jurnal Hukum Novelty (1412-6834), 14(1).
Najib, W., & Sulistyo, S. (2020). Tinjauan Ancaman dan Solusi Keamanan pada Teknologi Internet of Things. Jurnal Nasional Teknik Elektro dan Teknologi Informasi, 9(4), 375-384.
Nofrial, R., Abood, T. A., Shihab, H. A., & Susilo, A. B. The Consumer Protection in The Balance of Business Actors and Consumers: A Paradigm of Justice. Jurnal Hukum, 41(1), 73-91.
Omokanye, A. O., Ajayi, A. M., Olowu, O., Adeleye, A. O., Chianumba, E. C., & Omole, O. M. (2024). AI-powered financial crime prevention with cybersecurity, IT, and data science in modern banking. International Journal of Science and Research Archive, 13(3).
Pakpahan, B. D. S., Parameshwara, P., Pakpahan, K., Saota, M. C. N., & Tambunan, F. O. (2023). Tinjauan Yuridis Kejahatan Di Dalam Sistem Elektronik Pada Rekening Virtual. AL-MANHAJ: Jurnal Hukum dan Pranata Sosial Islam, 5(2), 1691-1708.
Pratiwi, A. (2022). Evaluation of Automated Configuration Management Tools in Achieving Least-Privilege Access Policies for E-Retail. International Journal of Applied Business Intelligence, 2(12), 23-30.
Priliasari, E. (2023). Perlindungan data pribadi konsumen dalam transaksi e-commerce. Jurnal Rechts Vinding: Media Pembinaan Hukum Nasional, 12(2).
Putra, G. A., Taniady, V., & Halmadiningrat, I. M. (2023). Tantangan Hukum: Keakuratan Informasi Layanan AI Chatbot Dan Pelindungan Hukum Terhadap Penggunanya. Jurnal Rechts Vinding: Media Pembinaan Hukum Nasional, 12(2).
Putranti, I. R. (2022). Principle of Technological Neutrality in Trade Facilitations: A Legal Perspective. Jurnal Hukum Novelty (1412-6834), 13(2).
Roseline, S. A., & Geetha, S. (2021). A comprehensive survey of tools and techniques mitigating computer and mobile malware attacks. Computers & Electrical Engineering, 92, 107143.
Shah, S., & Mehtre, B. M. (2015). An overview of vulnerability assessment and penetration testing techniques. Journal of Computer Virology and Hacking Techniques, 11(1), 27-49.
Sofiani, T., & Suhendar, H. (2024). The Settlement Model of Non-Performing Financing Which is More Effective and Legal Justice in Sharia Financing Companies. Jurnal Hukum, 40(1), 61-75.
Yeh, S. S. (2022). New financial action task force recommendations to fight corruption and money laundering. Laws, 11(1), 8.
Yi, P. X., Kasmin, I. F., Amin, S., & Zainal, N. K. (2022). Implementation of One-Time Password in Online Banking System Among Malaysian Bank Users to Reduce Cyber Fraud. International Journal of Data Science and Advanced Analytics, 4, 20-26.
Yu, M., Zhuge, J., Cao, M., Shi, Z., & Jiang, L. (2020). A survey of security vulnerability analysis, discovery, detection, and mitigation on IoT devices. Future Internet, 12(2), 27.
Zaman, M. N. U. (2024). Smart Regulation As A New Approach In Regulatory Reform In Indonesia. Jurnal Rechts Vinding: Media Pembinaan Hukum Nasional, 13(1).
C. Internet
https://apjii.or.id/berita/d/apjii-jumlah-pengguna-internet-indonesia-tembus-221-juta-orang (diakses tanggal 08 Mei 2025)
https://kabarbursa.com/market-hari-ini/107365/diduga-terjadi-kebocoran-data-begini-penjelasan-bri (diakses tangggal 09 Mei 2025)
https://lpem.org/special-report-vol-1-no-1-may-2023-isu-keamanan-siber-perbankan-dan-potensi-bank-run/ (diakses tanggal 08 Mei 2025)
https://www.bbc.com/indonesia/articles/cn01gdr7eero (diakses 3 Juni 2025)
https://www.google.com/search?sca_esv=68ea10725fc9b20e&q=Data+Statistik+pengguna+Mobile+Banking+di+Indonesia+2024&sa=X&ved=2ahUKEwi-kPeGpJWNAxVQ4jgGHWgrBqkQ1QJ6BAg-EAE&biw=1366&bih=589&dpr=1 (diakses tanggal 09 Mei 2025)
https://www.tempo.co/ekonomi/bca-catat-4-miliar-serangan-siber-ke-sistem-perbankan-pada-2024-1210740 (diakses tanggal 09 Mei 2025)
https://www.tempo.co/sains/daftar-serangan-ransomware-ke-lembaga-keuangan-indonesia-bi-bsi-dan-terbaru-bri-1183490 (diakses 23 April 2025)
https://www.tempo.co/sains/mengenal-bashe-kelompok-ransomware-yang-diduga-serang-bank-bri-1183441 (diakses 3 Juni 2025)
Regulation :
Undang-Undang Dasar Negara Republik Indonesia Tahun 1945
Undang-Undang Nomor Nomor 8 Tahun 1999 Tentang Perlindungan Konsumen
Undang-Undang Nomor 11 Tahun 2008 Tentang Informasi dan Transaksi Elektornik sebagaimana diubah dengan Undang-Undang Nomo 19 Tahun 2016 Tentang Perubahan atas Undang-undang Nomor 11 Tahun 2008 Tentang Informasi dan Transaksi Elektronik
POJK Nomor 21 Tahun 2003 Tentang Layanan Digital Oleh Bank Umum
SEOJK Nomor 29/SEOJK.03/2022 Tentang Ketahanan dan Keamanan Siber bagi Bank Umum
