Purpose
The Cyber Fraud Investigation Division – Indonesia (CFID-ID) is an independent research initiative focused on identifying, documenting, and responsibly disclosing suspected domain abuse, phishing operations, and online fraud infrastructure.
Data Sources
All analysis conducted by CFID-ID is based exclusively on publicly accessible information. No private, leaked, or non-consensual data sources are used.
- Public website content and landing pages
- Domain registration (WHOIS / RDAP) records
- DNS and hosting infrastructure data
- Public SSL/TLS certificate metadata
- Open-source intelligence (OSINT)
Indicators of Suspicious Activity
CFID-ID evaluates websites using commonly recognized indicators of online fraud and abusive behavior. These indicators are observational and non-conclusive.
- Guaranteed or unusually high return claims
- Lack of verifiable business registration or licensing
- Recently registered or rapidly rotated domains
- Use of anonymous or privacy-protected registration details
- Referral-based or recruitment-driven reward structures
- Requests for irreversible payment methods
Verification & Documentation Process
Each case is reviewed manually to reduce false positives. Supporting evidence such as screenshots, archived content, and infrastructure data is collected and retained for responsible disclosure.
CFID-ID does not automate enforcement actions and does not perform law enforcement functions.
Neutrality & Responsible Disclosure
CFID-ID does not assert legal conclusions or criminal determinations. All published case documentation is descriptive and neutral in nature.
Reports are submitted to relevant registrars, hosting providers, and infrastructure operators through their official abuse channels.
Limitations
CFID-ID acknowledges that publicly observable indicators may not always reflect intent or legality. Case documentation is provided to support further review by appropriate service providers.