Brinztech Alert: Massive 81 Million Record Database of Indonesian Courier JNE Logistics on Sale

Dark Web News Analysis: JNE Logistics Customer Database for Sale

A threat actor is selling a database on a hacker forum, allegedly belonging to JNE Logistics, a major Indonesian courier and logistics company. While a sample of over 104,000 records is being actively offered, the seller claims this is just a fraction of a much larger dataset containing 81 million records.

The data is reportedly from August 2025, indicating a very recent breach. The compromised information is exceptionally detailed, providing a complete picture of a customer’s shipment and creating a significant risk. The leaked records allegedly include:

• Full receiver names, phone numbers, and complete delivery addresses
• Shipment tracking numbers and detailed goods descriptions
• Insurance and payment details
• Precise delivery timestamps and GPS coordinates
• Courier information

Key Cybersecurity Insights

A data breach at a large logistics company is a critical event that endangers both the digital and physical security of its customers. The key implications include:

• A Goldmine for Hyper-Realistic Scams: This is the most immediate and dangerous threat. Armed with a customer’s name, phone number, and the exact details of a package they are expecting—including the real tracking number—criminals can create incredibly convincing “smishing” (SMS phishing) and email phishing campaigns. Scams like, “There is an issue with your JNE package [real tracking #]. A small customs fee is required to release it. Click here to pay,” are highly effective and can lead to widespread financial fraud.
• Direct Physical Security Risk to Recipients: The leak of delivery addresses, timestamps, and GPS coordinates, combined with descriptions of the goods being shipped, poses a direct physical security risk. Criminals can use this data to target homes for burglary, knowing when the occupants are expecting a high-value item, or to directly intercept packages upon delivery.
• High Potential for Supply Chain and Business Disruption: Beyond the risk to individuals, this data can be used to disrupt business operations. Competitors could gain valuable intelligence on shipping volumes and key customers. Malicious actors could use the detailed information to create fraudulent delivery disputes on a mass scale, track sensitive corporate shipments, or interfere with JNE’s logistics network.
• Severe Regulatory and Reputational Damage: A breach of this magnitude, potentially impacting tens of millions of Indonesian citizens and businesses, would constitute a major violation of Indonesia’s Personal Data Protection (PDP) Law. JNE Logistics would face intense scrutiny from regulators like BSSN and Kominfo, along with a potentially catastrophic loss of customer and business partner trust.

Critical Mitigation Strategies

An urgent response is required from JNE Logistics, and extreme vigilance is needed from its customers.

• For JNE Logistics: Immediate Investigation and Public Advisory: JNE must launch an immediate, top-priority investigation to validate the breach claim and identify its source. It is crucial for them to issue a proactive public advisory, warning all customers about the high risk of sophisticated phishing and smishing scams that use real shipment details to appear legitimate.
• For JNE Logistics: Activate Incident Response and Notify Regulators: The company’s incident response plan must be fully activated to contain the breach and assess the scope of the data exfiltration. They must also notify the relevant Indonesian data protection authorities (BSSN, Kominfo) within the legally mandated timeframe.
• For Customers of JNE: Be Extremely Vigilant of All Delivery Notifications: All JNE customers should now operate under the assumption that their data is compromised. Treat all unsolicited emails and text messages about package deliveries with extreme suspicion, even if they contain a real tracking number. Never click on links or provide payment information in these messages. To check a package’s status, always go directly to the official JNE website or app and enter the tracking number manually.
• For JNE Logistics: Comprehensive Security Assessment: The company must conduct a full-scale security assessment of its entire logistics and data infrastructure. This includes customer-facing portals, backend shipment tracking databases, mobile applications, and all third-party vendor connections, to identify and remediate the root cause of the breach.

for report this post please contact us: contact@brinztech.com