25-6-2024 (JAKARTA) The Indonesian government has found itself embroiled in a significant cybersecurity crisis, as a sophisticated attack on its national data centre has led to widespread disruptions of public services, most notably causing chaos at airport immigration checkpoints. Communications Minister Budi Arie Setiadi revealed to Reuters on Monday that the cyber-assailants have demanded a staggering ransom of $8 million to relinquish control of the compromised systems.
The attack, which utilised a novel variant of the infamous Lockbit 3.0 malware, resulted in lengthy queues at airport immigration desks as automated systems faltered. While authorities have managed to restore functionality to automated passport machines, the incident has highlighted the vulnerability of critical national infrastructure to cyber threats.
Minister Setiadi declined to comment on whether any ransom had been paid, stating that the government’s primary focus is on restoring affected services, particularly those related to immigration. The Lockbit cybercrime group, known for its ransomware attacks, typically encrypts victims’ data and offers decryption keys in exchange for cryptocurrency payments.
This breach is the latest in a series of cyber incidents targeting Indonesian entities. Previous attacks have affected major institutions such as Bank Syariah Indonesia, the country’s largest Islamic lender, and even the central bank. In 2021, a flaw in the health ministry’s Covid-19 app exposed the personal data of 1.3 million individuals.
Cyber security expert Teguh Aprianto described the current attack as “severe” and unprecedented in its impact on public services. “It exposes significant vulnerabilities in government infrastructure, personnel, and vendor relationships,” Aprianto noted.
