Indonesia's national data center hit by ransomware attack demanding $12 million

The Indonesian National Data Center (PDN) under the Ministry of Communications and Information Technology was attacked by ransomware on June 20, 2024, affecting public services. The attackers are demanding $8 million or 131 billion rupiah (approximately 1.28 billion yen) as a ransom for the encrypted data.

Decoding Brain Cipher: The Ransomware Behind the National Data Center Breach

National Data Center of the Government of Japan, BSSN Ungkap Pelakunya

Indonesian government datacenter locked down by ransomware • The Register
https://www.theregister.com/2024/06/24/indonesia_datacenter_ransomware/

According to Lieutenant General Hinsa Sibrian, head of the Indonesian National Cyber Cryptography Agency (BSSN), the attack used ransomware called ' Brain Cipher ', an improved version of 'LockBit 3.0'. The data centers are located in the capital Jakarta and Surabaya, a city on the same island of Java as Jakarta, but this time only the data center in Surabaya was attacked.

In Indonesia, a ransomware attack group using LockBit disrupted the systems of state-owned bank Syariah Indonesia in 2023.

'This type of ransomware is an ongoing effort, and Brain Cipher is the latest version that we have seen in samples,' said Lt. Gen. Cibrian.

The ransomware attack affected the Immigration Bureau's online services in general and the online announcement of new student registrations, but most immigration services at Soekarno-Hatta International Airport and Ngurah Rai International Airport have already been restored.

According to the news site JakartaGlobe, citing data compiled by security firm Vaksincom, 10 major Indonesian institutions, both government and private, including logistics, IT services, banks and securities firms, will fall victim to ransomware attacks by June 2024.

Continued
Indonesian government refuses to pay ransom of 1.3 billion yen for data after ransomware attack - GIGAZINE