Jakarta, CNN Indonesia - Tokopedia claims millions of user data leaked on social media (social media) is not new data. It will also drag the spreaders into the realm of law.
"We are aware that unauthorized third parties have posted information illegally on social media and internet forums regarding how to access our customer data that has been stolen," Tokopedia Nuraini Razak's VP of Corporate Communications said in a written statement to CNNIndonesia.com, Sunday (5/7).
"We want to emphasize that this is not an attempt to steal new data and Tokopedia user password information remains safe protected behind encryption," he added.
Previously, the CISSReC cyber research institute on Saturday (4/7) found a link containing 91 million Tokopedia user data distributed in one of the groups on Facebook and can be downloaded freely.
Head of CISSReC Pratama Persadha said the link, which was distributed for free since Friday (3/7), came from one of the accounts named @Cellibis, who claimed to buy it in darkweb for US $ 5 thousand (Rp70 million), on the Raidsforum forum.
In May, 91 million Tokopedia user data was declared leaked and spread on darkweb. The data is in the form of a user ID, e-mail, full user name, date of birth, gender, cellphone number, and password that is still hashed or encrypted. The leaked data was sold at US $ 5 thousand.
Nuraini continued that she requested the removal of the scattered data because it was a violation of the law.
"We have reported this to the police and also reminded all parties to delete all information that facilitates access to data obtained through unlawful means," he said.
As a follow up, he said, Tokopedia has coordinated with the government and authorities related to data theft.
"And have implemented security measures according to international standards. We have also directed our users on the further steps they must take to ensure the protection of their personal data," said Nuraini.