Brinztech Alert: Database of PT Tiki Jalur Nugraha Ekakurir is on Sale

Dark Web News Analysis: Alleged JNE Database Sale

A dark web listing has been identified, advertising the alleged sale of a massive database from PT Tiki Jalur Nugraha Ekakurir (JNE), a prominent Indonesian logistics company. The threat actor claims the database contains 81.47 million records of logistics data, with an uncompressed size of 245GB. The data, which is reportedly from May to August 2025, includes recipient names, addresses, mobile phone numbers, and unique waybill numbers.

This incident, if confirmed, represents a critical data breach for a company operating in a high-growth e-commerce market. The sheer volume and recency of the data make it a high-value asset for financially motivated cybercriminals. The combination of logistics information with a customer’s PII provides a perfect blueprint for sophisticated scams, highlighting a severe security failure that could have long-term consequences for JNE and its customers. This breach also directly challenges JNE’s security and privacy policies, which state that customer data will not be shared with third parties.

Key Insights into the JNE Data Compromise

This alleged data leak carries several critical implications:

• High-Value PII for Targeted Phishing: The leaked data, which includes recipient names, addresses, and phone numbers, is a goldmine for attackers. They can use this information to launch highly personalized and convincing phishing attacks and social engineering scams. For example, a scammer could impersonate a JNE delivery driver and use a customer’s specific waybill number and address to trick them into revealing sensitive information or paying fraudulent fees.
• Violation of Indonesia’s PDP Law: As a company operating in Indonesia, JNE is subject to the Personal Data Protection (PDP) Law (Law No. 27 of 2022). This law requires JNE to implement appropriate security measures and, in the event of a breach, to notify both the national data protection authority and affected individuals “without delay.” Failure to comply can result in severe legal and financial penalties, with fines of up to 2% of annual revenue.
• Massive Scale and Recency of Data: The breach of over 81 million records is a massive-scale data breach that affects a significant portion of the Indonesian population. The fact that the data is recent (May-August 2025) makes it particularly valuable and dangerous, as it can be used for up-to-date and highly relevant scams.
• Reputational and Financial Damage: A confirmed data breach of this scale could severely damage JNE’s reputation, leading to a loss of customer trust and potential legal action. The company could also face significant financial losses from regulatory fines and the costs of incident response and remediation.

Critical Mitigation Strategies for JNE and Authorities

In response to this alleged incident, immediate and robust mitigation efforts are essential:

• Urgent Investigation and Notification: JNE must immediately launch a forensic investigation to verify the authenticity of the dark web claim. It is critical for the company to notify the National Cyber and Crypto Agency (BSSN) and the Ministry of Communication and Informatics (Kominfo) without delay, as required by law.
• Enhanced Authentication and Security Measures: JNE must immediately enforce Multi-Factor Authentication (MFA) and stronger password policies for all customer and employee accounts. The company should also review its security measures, including its access controls, encryption protocols, and network monitoring systems, to prevent a similar breach in the future.
• Proactive Customer Communication: The company must prepare a transparent and timely notification to its affected customers, advising them of the potential breach and providing clear guidance on how to protect themselves. This includes advising customers to be vigilant for phishing attacks and to be wary of any communication that references their waybill number.
• Monitor Dark Web: Proactively monitor dark web forums and marketplaces for any further mentions or distribution of the JNE data. A proactive monitoring service, such as those provided by Brinztech, can help detect any new data leaks or scams and enable a more rapid response.