<![CDATA[The development of digital technology has brought significant advancements but has also increased the risk of cybercrime, one of which is phishing. Phishing is a form of cybercrime aimed at stealing personal data by deceiving victims into providing sensitive information, such as passwords, credit card numbers, or other identity data. This crime poses a serious threat to information security and individual privacy, especially in digital transactions. This study aims to analyze phishing modus operandi, evaluate legal regulations governing personal data protection, and assess the effectiveness of legal protection for phishing victims in Indonesia. The research method used is normative juridical with a statutory approach. This study finds that phishing is a serious threat to individual and organizational security in Indonesia, with modus operandi involving fake messages, impersonation of trusted institutions, and counterfeit websites to steal personal information. Cyber law regulations, including the Criminal Code (KUHP), the Electronic Information and Transactions Law (UU ITE), and the Personal Data Protection Law (UU PDP), have established provisions for personal data protection and sanctions for phishing perpetrators. However, implementation faces challenges. Weak law enforcement, lack of investigative expertise, low digital literacy among the public, and limited infrastructure and human resources are the main obstacles in addressing this crime. Additionally, rapid technological advancements create new security vulnerabilities that existing regulations have not fully anticipated]]>
Copyrights © 2024
