Learning from the PDN Case: What the Indonesian Government Must Urgently Do

  Editorial INTI     3 bulan yang lalu
09add183a0b576cc26e81ebfba6e673f807db6e3c4e908f1732cbd6a73e025df.jpg

Jakarta, INTI – The hacking of the National Data Center (PDN) by the ransomware Brain Cipher has shaken Indonesia, raising concerns about data security and the stability of public services. This incident serves as a crucial warning for the government to take urgent steps to strengthen cybersecurity. This article will discuss what the Indonesian government must do to prevent similar attacks in the future.

The PDN Case Chronology

On June 23, 2024, the National Data Center experienced a cyber attack by the ransomware Brain Cipher, which resulted in the encryption of essential data and disruptions to various public services. The attackers demanded a ransom of USD 8 million or around IDR 131 billion to unlock the encrypted data. The Head of the National Cyber and Encryption Agency (BSSN), Hinsa Siburian, confirmed that this attack was a new development of the Lockbit 3.0 ransomware.

Impact of the Attack

The attack significantly impacted public services that rely on data from the PDN. Some affected services include:

  1. e-KTP Services - The issuance and replacement of electronic ID cards came to a halt.
  2. BPJS Health Insurance - Delays in claims processing and healthcare services.
  3. Taxation System - Delays in tax reporting and payments.
  4. Immigration Services - Delays in issuing passports and visas.

According to data from BSSN, over 50 million citizen data records are at risk of exposure due to this attack. With around 122 million active internet users in Indonesia in 2023, almost half of the internet user population was directly affected by this incident.

Urgent Steps the Government Must Take

1. Enhance Cybersecurity Infrastructure

The government needs to invest in the latest cybersecurity technologies to protect data and information systems. This includes using advanced firewalls, intrusion detection and prevention systems, and stronger data encryption.

2. Training and Development of Human Resources

Training and developing human resources in cybersecurity is essential. The government should provide training programs for IT and cybersecurity staff in government agencies and related institutions to ensure they have the skills needed to handle evolving cyber threats.

3. International Collaboration

Collaboration with other countries and international organizations in cybersecurity can help Indonesia access the latest technologies and strategies to combat cyber threats. Information exchange and cooperation in cyber attack investigations can also speed up response and recovery.

4. Increase Cyber Awareness and Digital Literacy

The public needs to be educated about the importance of cybersecurity. Public awareness campaigns on basic security practices, such as using strong passwords, managing personal data, and being wary of phishing, are necessary to reduce the risk of cyber attacks.

5. Strong Cybersecurity Regulations and Policies

The government must develop and implement strong cybersecurity regulations and policies. This includes laws regulating personal data protection and strict sanctions for cybercrime perpetrators. Clear and firm policies will provide a strong legal foundation for national cybersecurity.

6. Establish a Cyber Emergency Response Team

Establishing a 24/7 cyber emergency response team is crucial to responding quickly and effectively to cyber attacks. This team should be equipped with adequate technology and resources to monitor, detect, and handle cyber incidents.

Latest Statistics and Facts

According to a report from BSSN, Indonesia experienced a significant increase in the number of cyber attacks in recent years. In 2023, more than 200 million cyber attacks were identified, a 40% increase from the previous year. This shows that cyber threats are continuously evolving and becoming more complex.

The hacking of the PDN by the ransomware Brain Cipher is a serious warning for Indonesia to immediately strengthen its cybersecurity system. The government must take urgent steps to enhance security infrastructure, train human resources, increase public awareness, and develop strong regulations. With the right collaboration and investment, Indonesia can be better prepared to face future cyber threats.

To support economic development, technology, and the digital world, the Indonesia Internet Expo and Summit 2024 as part of the Indonesia Technology and Innovation (INTI-2024) will be the right platform to see the latest innovations in technology and the internet. INTI is the largest technology and innovation exhibition and conference in Indonesia. Join and register yourself to get the latest information and participate in the event.

Ad

Ad