This study aims to examine the legal protection available to victims of phishing crimes in digital banking transactions and to identify the challenges in its implementation. The research adopts a normative legal method with statutory and conceptual approaches. The data used consist of primary, secondary, and tertiary legal materials collected through library research and analyzed qualitatively using a descriptive-analytical approach. The results show that although phishing is not explicitly regulated as a distinct offense under Indonesian law, legal protection can still be found within existing frameworks such as criminal law, banking regulations, and electronic transaction laws. Legal protection includes preventive measures, such as improving banking security systems and enhancing digital literacy, as well as repressive measures, including law enforcement and dispute resolution. Nevertheless, challenges remain, particularly in terms of regulatory limitations, evidentiary difficulties, and unclear liability between banks and customers. In conclusion, stronger regulations, effective law enforcement, and increased public awareness are essential to ensure optimal protection for victims and maintain trust in digital banking systems.
Copyrights © 2026