Editor’s Note
- Ahead of the Eid al-Fitr holidays, BRI warns customers about fraud involving .APK files
Digital crime patterns continue to evolve - It is recommended to activate the additional 2FA security feature for extra protection
- Customers should block the sender’s number if they suspect fraud
Ahead of the Eid al-Fitr holidays, BRI warns customers about fraud involving .APK files
As the Eid al-Fitr holidays approach, a period in which digital communication and transactions typically increase, PT Bank Rakyat Indonesia (Persero) Tbk (BRI) calls upon the public to remain vigilant regarding the protection of their accounts, particularly against files originating from unknown sources. In practice, this scam often begins with a WhatsApp message from someone claiming to be from a specific agency, featuring a convincing story and attachments of .APK files, digital invitations, letters supposedly from the tax authorities, package delivery receipts, and other documents presented as important information.
When victims download and install these files, they can serve as entry points for malicious programs (malware) designed to steal data, damage systems, and even take over devices without the user’s knowledge.
APK applications from unreliable sources can also request specific access rights on the device and are misused to monitor user activity, thereby opening the door to the misuse of access to financial services stored on the device.
Digital crime patterns continue to evolve
Saladin Dharma Nugraha Effendi, Director of Information Technology at BRI, explains that digital crime patterns continue to evolve and require heightened vigilance. “The company continues to improve the security capabilities of its digital services to adapt to dynamic threats. Security improvements are continuously implemented to protect customer data and transaction access. Customer safety and convenience are our constant priorities,” says Effendi.
BRI urges customers not to click on, download, or install applications from unreliable sources and not to forward suspicious messages, files, or links to others.
Activating the additional 2FA security feature is recommended for extra protection
If you receive an unusual message, such as a message with an urgent tone, a reward, a request to update or “verify” data, or an attachment from an unknown number, even if the message supposedly originates from a bank or other important service, you will be asked to verify the sender’s identity before taking further action.
Activating additional security features such as two-factor authentication (2FA) is also recommended for extra protection when using digital services. If you have already downloaded or installed a suspicious .APK file, the first step is to disable your mobile data and Wi-Fi connection and uninstall the installed application.
Additionally, you can immediately change your username, PIN, and password for your BRImo account and the associated email account, and perform a factory reset via the device settings to ensure that the device can no longer be managed by unknown parties.
Customers must block the sender’s number if they suspect fraud
Customers must also block the sender’s number if they suspect the message is fraudulent. If they detect suspicious activity, they must contact BRI immediately at 1500017.
“BRI emphasizes the importance of caution when filtering information, particularly messages accompanied by files or links from unknown sources. Early recognition of threat indicators is a crucial step in preventing unauthorized access to customer data. Collaboration between BRI and customers forms the basis for building a safe and reliable digital ecosystem,” concluded Saladin. ***obs
