President Joko “Jokowi” Widodo has issued a directive for the examination of government data centers following a recent cyberattack that significantly disrupted various governmental services, including immigration and operations at major airports. Regarded as the most severe attack in recent years, last week’s incident has brought attention to the susceptibility of Indonesia’s data infrastructure.
The absence of backup for the majority of the affected data has laid bare the government’s vulnerability to such cyber threats. The decision not to acquiesce to an $8 million ransom for the recovery of the encrypted data has intensified the urgency of addressing this critical issue.
Subsequent to the cyberattack, the President has tasked the State Auditor to scrutinize the nation’s data centers. The review will concentrate on governance and financial aspects, as articulated by Muhammad Yusuf Ateh, the head of Indonesia’s Development and Financial Controller (BPKP), subsequent to participation in a cabinet meeting presided over by Jokowi on Friday.
According to Hinsa Siburian, the chair of Indonesia’s cyber security agency, a staggering 98 percent of the government’s data held in one of the compromised data centers had not undergone backup. This disclosure has raised substantial apprehensions regarding the governance and preparedness of Indonesia’s data centers.
In response to the circumstances, Communications and Information Minister Budi Arie Setiadi has affirmed that the ministry possesses backup capacity at the data centers. However, its utilization by government agencies has been discretionary due to financial constraints. Nonetheless, plans have been declared to make data backup obligatory for all government agencies in the near future.
The minister has faced considerable criticism on social media in the aftermath of the cyberattack, with demands for his resignation due to alleged lack of accountability over recurrent cyber attacks. Despite the scrutiny, the minister maintains that the attack was orchestrated by a “non-state actor” seeking financial gain and has given assurance that government services will be fully reinstated by August.
Ransomware attackers employ software to encrypt data and demand payment for its restoration. In this specific incident, the government has identified the utilization of a preexisting malicious software known as Lockbit 3.0 by the perpetrator.
The aftermath of the cyberattack has underscored the imperative need for an exhaustive audit and reformation of Indonesia’s data governance and infrastructure. Addressing vulnerabilities, ensuring data backup, and enhancing preparedness for potential cyber threats are indispensable for the nation’s digital security.
It is crucial for the government to take proactive measures to safeguard its data infrastructure and fortify against future cyber threats. The conclusions of the audit will be keenly anticipated, and it is expected that steps will be taken to strengthen Indonesia’s cyber resilience.
Leave a Reply