BCA Addresses Customer Data Breach Rumours

Jakarta, CNBC Indonesia — Rumours of customer data breaches at PT Bank Central Asia Tbk (BBCA) have surfaced. Management has denied the claims and assured that customer data remains secure.

‘BCA confirms that the information regarding data leakage is untrue. BCA has conducted a thorough investigation and confirmed no data breaches from its systems,’ management stated on Sunday (25/5/2026).

The bank assured that it consistently implements multi-layered security strategies and risk mitigation measures to safeguard customer data and digital transactions.

BCA has also urged customers to remain vigilant against individuals impersonating the bank and various fraud schemes aimed at obtaining customer data. Customers are reminded not to share confidential banking details such as BCA ID, passwords, One Time Passwords (OTP), and Personal Identification Numbers (PIN) with anyone, and to regularly change PINs and passwords.

Previously, Dark Web Intelligence, an X account, stated that a group claimed to possess approximately 890,000 mobile banking logins, 4.9 million database records, personal banking information, and internal account-related columns allegedly linked to BCA customer data.