Major Cyberattack in Indonesia Leads to Resignation and Investigation

Indonesia's IT Ministry Faces Turmoil Amid Largest Cyberattack in History

In the wake of Indonesia's most severe cyberattack, a high-ranking official from the information technology ministry has tendered his resignation as the government audits its data centers. The cyberattack has significantly disrupted government functions, affecting over 280 agencies.

Resignation Amidst Crisis

Semuel Abrijani Pangerapan, director-general for applications and information at the Communications and Information Technology Ministry, resigned on Thursday, citing moral responsibility. The resignation follows a massive hack last month that halted services ranging from airport immigration processes to scholarship programs. The responsible hacker group surprisingly apologized and released a key to unlock the stolen data, despite the government’s refusal to meet their $8 million ransom demand.

Government Response

The technology ministry confirmed the key’s efficacy and is now working towards a system-wide recovery, having initially anticipated full recovery by next month. Currently, only 2% of the compromised data has been salvaged, with the rest considered permanently lost. President Joko Widodo has ordered a comprehensive cybersecurity audit and mandated immediate backups for national data centers, requiring all agencies to adopt multiple backup solutions.

“The most important thing is to find a solution so that it doesn’t happen again,” President Widodo, known as Jokowi, emphasized. Despite these measures, public dissatisfaction remains high, with over 23,000 signatures supporting a petition for Communications Minister Budi Arie Setiadi's resignation. Jokowi has indicated that all aspects of the situation are under evaluation.

Impact of the Cyberattack

The aftermath of the attack has caused significant disruptions, including lengthy lines at major airports due to manual processing of passenger information. Additionally, data for thousands of state scholarship recipients has been lost. According to cybersecurity expert Alfons Tanujaya, a critical flaw in the system was the lack of adherence to fundamental data security standards, with no proper backup for thousands of virtual machines managed by the attacked data center. Tanujaya noted that this is the first instance of a government official resigning because of a cyberattack and described it as the largest in Indonesia’s history based on the scale of impacted data.

Systemic Vulnerabilities

PT Telkom Indonesia, whose subsidiary managed the compromised data center, acknowledged existing system weaknesses. Measures like disaster recovery plans and various backup options were not fully implemented, said Muhamad Hidayat, an information security analyst at PT. SysTech Global Informasi in Jakarta. The hack compromised almost all government data, as the center managed information across multiple ministries.

Ongoing Cybersecurity Challenges

Indonesia has faced frequent cyberattacks, with at least 113 reported cases of personal data leaks over the past two years, according to digital rights group SAFEnet. Recently, hackers have leaked personal data of hundreds of police officers and soldiers and even changed the name of the law ministry’s official YouTube account to "Tesla."

The government’s steps towards recovery and future prevention are critical as the nation grapples with the consequences of this unprecedented cyberattack.