Cyber attack compromised Indonesia data centre, ransom sought


Indonesia's Minister of Communication and Informatics Budi Arie Setiadi gestures during an interview at his office in Jakarta, Indonesia, May 8, 2024. REUTERS/Ajeng Dinar Ulfiana/ File Photo

JAKARTA (Reuters) -A cyber attacker compromised Indonesia's national data centre, disrupting immigration checks at airports, and asked for an $8 million ransom, the country's communications minister told Reuters on Monday.

The attack disrupted several government services, most notably at airports last week, with long lines forming at immigration desks. Automated passport machines were now functioning, the communications ministry said.

Minister Budi Arie Setiadi said the attacker used a new variant of existing malicious software called Lockbit 3.0, without giving further details.

The Lockbit cybercrime group is notorious for using malicious software called ransomware to digitally extort its victims.

"We are now focusing to restore the services of the affected national data centre such as immigration," Budi said. He did not say whether any ransom had been paid.

Ransom software works by encrypting victims' data. Hackers can offer a key in return for payments, typically to be made in cryptocurrency, that can run into the hundreds of thousands or even millions of dollars.

If the victim resists, hackers can then threaten to leak or delete confidential data in a bid to pressure the person or organisation.

Semuel Abrijani Pangerapan, an official at communications ministry, said digital forensics into investigation are underway and further details have yet to be found.

The attack was the latest in a series of cyber-attacks to hit Indonesian companies and government agencies in the past few years.

Last year, media reported that account details of 15 million customers of the country's biggest Islamic lender Bank Syariah Indonesia (BSI) were published online. The bank did not confirm its data had been leaked.

In 2022, Indonesia's central bank was attacked by ransomware but said the attack did not affect its public services. In 2021, a flaw in the health ministry's COVID app exposed the personal data and health status of 1.3 million people.

A cybersecurity expert, Teguh Aprianto, said the latest cyber-attack was "severe" and the first to cause days-long disruptions to Indonesia's public services.

"It shows that the government infrastructure, manpower handling this and the vendors are all problematic," he said.

(Reporting by Stanley Widianto and Ananda Teresia,Editing by John Mair and Ros Russell)

Follow us on our official WhatsApp channel for breaking news alerts and key updates!

Next In Tech News

Mobile phone-owning 13 to 16-year-olds increasingly targeted by scams
AI helps some workers but hinders those with skill, know-how – study
TikTok to give package kits on its website for US Android users to download app
Human artists could disappear if copyright not protected from AI
Start your own blog for more space and freedom to share your material
Meta prepares for layoffs on Monday -internal memo
Coinbase must face customer lawsuit in New York
Iliad to invest $3.1 billion to boost AI infrastructure in Europe
OpenAI's Altman envisions Stargate-like programme for Europe
Motorola refused permission to appeal UK emergency services network case

Others Also Read