Amid the accelerated use of digital automation over the past five years, the risk of attacks occurring in cyberspace (even worse than WannaCry) continues to increase. Many companies are already leveraging transformative technologies such as artificial intelligence (AI), the internet of things (IoT), and 5G. During the COVID-19 pandemic, digital transformation is also felt to be increasing. Every business inevitably takes advantage of digital technology to continue to survive. In addition, the Work from Home (WFH) policy in almost all companies 'forces' their employees to work using privately-owned network connections and also (most likely) insecure devices. The more employees that work from home, the greater the potential for cyberattacks by insiders - both intentional and unintentional.

The National Cybersecurity Operations Center (Pusopskamsinas) of the National Cyber ​​and Crypto Agency (BSSN) recorded 189 million cyber-attacks from January to August 2020, an increase of almost five times compared to the same period the previous year. During the implementation of the WFH policy, there have been cyber-attacks that take advantage of issues related to Covid-19. The most common type of attack is trojan-activity as much as 56% and then followed by information-gathering activity as much as 43%, while the remaining 1% is web application attack. For data breach cases during the period January to August 2020, there were 36,771 data accounts stolen in several sectors, including the financial sector. Meanwhile, the penetration of internet users in Indonesia is currently quite significant at 64%. This shows that Indonesia has become a separate market, both of which have a positive impact on activities in cyberspace, as well as being a separate vulnerability for cybersecurity.

One example of a case that has re-emerged at the end of 2020 is bank account burglary through mobile banking or internet banking. The criminals are trying to get the One Time Password (OTP) which is sent via SMS and the CVV number (the last 3 digits of the number on the back of the card) from the credit cardholder. The modus operandi of the perpetrators is to act as if they were from the bank, then contact the perpetrator and ask for the customer's bank OTP code. With the rise of these cases, efforts are needed to increase awareness and knowledge to the public to remain safe in transactions, both for customers and for the industry in the FSS in providing online services such as mobile banking. One of the recommended ways is to activate two-factor authentication or multi-factor authentication before making a transaction.

1. Provide knowledge about strategies in cyber security development.
2. Increase security awareness level against cyber-crime in the financial services sector.
3. Provide input and up-to-date information to Financial Service Actors regarding Cyber ​​Digital.