progresifjaya.id, JAKARTA – A Foreign Citizen (WNA) from Nigeria with the initials OIO was arrested by officers from Subdit 3 Ditressiber Polda Metro Jaya at Bank BRI KCP BRI GREEN VILLE. Jl. Greenville Complex Block C No.2A, Kebon Jeruk, West Jakarta, Monday, (2/6).
This black-skinned bandit was arrested for his cunning actions as a hacker alias breaking into the confidential emails of two companies, namely PT J and PT S. The black bandit was able to rake in billions of rupiah from his actions.
Kabid Humas of Polda Metro Jaya, Kombes Pol Ade Ary Syam in his explanation said, that the crime of black hat hacker OIO was hacking PT J’s email worth Rp3,6 billion. From this action, the black-skinned bandit managed to withdraw funds amounting to Rp1,6 billion.
When operating to carry out evil actions, the OIO gosong bandits are also known to have prepared 14 alias identities to facilitate their actions. The 14 fake identities prepared are SARANA MULTI PROJECTS; PARILLION LEISURE LIMITED; ELITEGROUP COMPUTE SYSTEMSCOLTD; TORRIDEN COLTD; COMPASS TENDERSTLD; THE GETTER GROUP; AGRI LIGHT ENERGYLTD; XIAMENA POLLO WALKER OUTDOOR; TADPHARMA GMBH; NINGBOLITETRACE EXIMLTD; AVMAX AIRCRAFT LEASINGING; INTERCARGO MACHINERY 2; AMERLAND AMERICA CORP; MANENERGY SOLUTIONSSA PTYLTD.
“In this email hack case, there is another suspect, namely an Indonesian citizen with the initials OCJ who is on the wanted list (DPO). He is the Boss of OIO. And the role of the suspect OIO himself is as the person who created the BRI Bank account on the orders of OCJ. The account was created using fake personal data,” explained Kombes Pol Ade Ary again.
Meanwhile, Head of Sub-Directorate 3 of the Ditressiber of the Polda Metro Jaya, AKBP Rafles Marpaung in his statement said, that the evil action of the OIO black hat hacker was to carry out Business Email Compromise (BEC). The BEC mode is a cyber fraud model in which the attacker disguises himself as a trusted figure, an organization. This disguised action aims to trick his business partners into taking certain actions, such as transferring money or providing sensitive data.
“The reporter as the attorney of PT J (the victim) explained that on May 15, 2025, the victim received an email from intan@PT. S.co.id from PT. S,” said AKBP Rafles.
In the email, he continued, there was a message asking PT J to make a Junior Loan Interest Payment (Loan Interest). After checking and confirming, on May 16, 2025 PT J then made a payment to the BRI Bank account number for
2.271.419.28 USD. After paying, a few days later PT J was informed that the payment funds had not been received by PT S.
“After the arrest, it was discovered that the email [email protected] had been controlled by the black hat hacker OIO. So the one who sent the email to PT J, on May 16, 2025 was the OIO Bandit who had previously prepared the BRI Bank account number,” he explained again.
For his evil deeds, the black hat hacker OIO with burnt skin was charged with multiple articles. He is suspected of Article 45 A paragraph 1 in conjunction with Article 28 paragraph 1 of Law Number 11 of 2008 as last amended by Law Number 1 of 2024 concerning the Second Amendment to Law Number 11 of 2008 concerning Electronic Information and Transactions.
Then also Article 48 in conjunction with Article 32 of Law Number 11 of 2008 as last amended by Law Number 1 of 2024 concerning the Second Amendment to Law Number 11 of 2008 concerning ITE.
And finally Article 51 paragraph 1 in conjunction with Article 35 of Law Number 11 of 2008 as last amended by Law Number 1 of 2024 concerning the Second Amendment to
Law Number 11 of 2008 concerning ITE.
Of the three articles suspected of Black Hat Hacker OIO, Article 51 is the article with the heaviest sentence, namely 12 years in prison. Meanwhile, Article 45 A carries a sentence of 6 years in prison and Article 48 in conjunction with Article 32 carries a sentence of 8 years in prison.
Furthermore, reflecting on this case, AKBP Rafles also appealed to the public and business actors to always be vigilant against various forms of online fraud that have been rampant lately. Especially those using bank accounts that are different from the company name or business partner’s name.
“If there are people who become victims of crimes using passports or accounts, please immediately report to the Ditressiber of the Polda Metro so that they can be followed up. Remember, we don’t tolerate online fraud crimes, be it phishing, smishing, quishing and vishing. We will wipe them out,” said AKBP Rafles firmly ending his statement. (Bembo)