Indonesia govt trying to restore databases after ransomware attack on data centre

CNA

27 Jun 202402:33

Summary

TLDRThe Indonesian government is working to restore databases affected by a significant cyber attack on a data center that disrupted public services, including immigration services and airport operations. The breach, which has been the worst in years, targeted 44 government agencies and involved ransomware demanding an $8 million ransom. While several agencies have restored their services, some passport services remain delayed. Authorities are investigating the attack, which used malicious software called Loog Bit 3.0. The government has refused to pay the ransom and aims to prevent similar incidents in the future.

Takeaways

😀 The Indonesian government is working to restore databases affected by a cyber attack on a data center, disrupting public services.
😀 The cyber attack, the worst breach in years, impacted immigration services and major airport operations in Indonesia.
😀 Sukarno-Hatta International Airport was among the affected places, with disruptions to immigration services due to the attack.
😀 As of Wednesday, five affected government agencies, including immigration offices and municipal administrations in East Java, had restored services.
😀 Some immigration offices were still facing delays in issuing passports, with many Indonesians awaiting their documents.
😀 44 government agencies, including key ministries, were targeted by the cyber attack, which was attributed to a ransomware campaign.
😀 Telcom Group, operating two major data centers in Indonesia, assured the public that their data was secure and isolated the national data center system to prevent further breaches.
😀 Authorities revealed that the attackers used malicious software called Logbit 3.0 and demanded an $8 million ransom, which the government refused to pay.
😀 The recent cyber attack follows a series of significant data breaches in Indonesia, including a massive breach involving 15 million customers of Bank Sharia Indonesia.
😀 On Thursday, Indonesian lawmakers are expected to summon officials to discuss the attack and call for an evaluation to prevent similar future disruptions.

Q & A

What was the main impact of the cyber attack on Indonesia's data center?
-The cyber attack disrupted public services, particularly affecting immigration services and operations at major airports, including Sukarno-Hatta International Airport.
Which agencies have successfully restored their services after the cyber attack?
-As of Wednesday, five affected agencies had restored database access and resumed services, including the immigration office and municipal administrations in East Java.
Were all services fully restored after the attack?
-No, some services, like passport issuance at certain immigration offices, were still experiencing delays, with Indonesians waiting for their passports.
How many government agencies were targeted in the cyber attack?
-A total of 44 government agencies, including key ministries, were targeted in the cyber attack.
What security measures did Telcom Group take following the cyber attack?
-Telcom Group, which operates major data centers in Indonesia, assured the public that their data was secure and isolated the affected system in the National Data Center to prevent further access.
What malicious software did the attacker use during the cyber attack?
-The attacker used malicious software called Logbit 3.0 during the cyber attack.
What demand did the attacker make in exchange for releasing the data?
-The attacker demanded a ransom of $8 million to release the data.
Has the Indonesian government agreed to pay the ransom?
-No, the Indonesian government has firmly refused to negotiate with the hackers or pay the ransom.
Has Indonesia experienced similar cyber security breaches before?
-Yes, Indonesia has faced multiple significant data security breaches, including a major breach last year involving the personal details of over 15 million Bank Sharia Indonesia customers and a leak of data on 35 million Indonesian passport holders.
What steps will Indonesian lawmakers take in response to the cyber attack?
-Indonesian lawmakers are expected to summon officials from the Ministry of Communication and Information and the National Cyber and Crypto Agency to discuss the recent disruption and evaluate measures to prevent future occurrences.