Logo of Phnom Penh Post newspaper Phnom Penh Post - Latest cyberattack on Indonesia gov’t ‘steals’ cop data



Latest cyberattack on Indonesia gov’t ‘steals’ cop data

Content image - Phnom Penh Post
At least ten government agencies have fallen victim to cyberattacks reportedly committed by Mustang Panda, a China-based hacker group, in the latest of a series of state data breaches. THE JAKARTA POST

Latest cyberattack on Indonesia gov’t ‘steals’ cop data

A recent alleged police data breach shows that not only is the Indonesian general public susceptible to having their data stolen and traded online amid the absence of data protection laws, but also law enforcement officials.

In a Twitter post on November 17, user @son1x777 claimed to have hacked into the National Police system and stolen the personal data of thousands of police officers, from their dates of birth to badge numbers. By November 20, the account had been suspended for violating Twitter rules.

National Police spokesman Inspector General Dedi Prasetyo has said that the police were still looking into the alleged data breach, kompas.com reported.

Wahyudi Djafar from the Institute for Policy Research and Advocacy (Elsam), which has been advocating for personal data protection laws for years, said the police must act fast to mitigate further data leakages and identify security vulnerabilities in their system.

“The police must also notify the subjects [police personnel] whose data has been compromised,” Wahyudi told the Jakarta Post.

He said the alleged incident underlined the urgent need for the personal data protection bill to be passed into law, which will provide guidelines for law enforcement agencies to impose stern penalties against the illegal use of personal data.

The bill’s deliberation at the House of Representatives has been slow due to a lack of consensus among the government and lawmakers over the design of a data protection agency.

House Deputy Speaker Sufmi Dasco Ahmad from the Gerindra Party previously said lawmakers would see to it that the bill was passed into law during the current sitting period, before lawmakers go into recess in mid-December.

Pratama Persadha from think tank Communication and Information System Security Research Center (CISSReC) found two different sets of leaked information, including data related to internal police investigations on alleged police misconduct.

“There is a possibility that the attack was a form of hacktivism that will help the hackers build a reputation or introduce them to the world,” Pratama said.

He noted several other past cyberattacks on the police, including website defacement and hacking. He said another set of data on police personnel was currently still up for sale on online hacking forum RaidForums by an account with the username Stars12n.

The alleged police data breach occurred only weeks following cyberattacks on state agencies last month – one related to the National Cyber and Encryption Agency (BSSN) and another that puts child victims of abuse at risk.

The latter centred on the hacking of the Indonesian Child Protection Commission’s (KPAI) database of the personal information of people who had filed reports on alleged child abuse cases, like bullying, kidnapping, violence against children and rape.

The breach also exposed the names of the children and their guardians, as well as ID card numbers, mailing and email addresses and phone numbers of the persons who reported the alleged abuse.

“Low cyber security awareness is also one of the reasons why government websites often become targets of hacking,” Pratama said, urging policymakers to immediately enact the data protection bill.

A member of the House Commission I overseeing defence, foreign affairs, information and intelligence, Irine Yusiana Roba Putri from the Democratic Party of Struggle (PDI-P), said policymakers could not wait for another data breach to get serious about deliberating the data protection bill.

“We need to have proper regulations and competent regulators so the personal data of citizens and those managed by state institutions can be properly protected,” Irine said.

THE JAKARTA POST/ASIA NEWS NETWORK

MOST VIEWED

  • ‘Education’ a priority traffic-law penalty

    A top National Police official on June 21 neither rejected nor confirmed the authenticity of a leaked audio message, which has gone viral on social media, on a waiver of fines for a number of road traffic-related offences. General Him Yan, deputy National Police chief in

  • Siem Reap’s $18M zoo said to educate public, help wildlife

    Angkor Wildlife and Aquarium Co Ltd has invested $18 million in a zoo in Siem Reap province, which will be opened in October to educate and promote animal conservation as well as attract national and international tourists. Currently, the Angkor Wildlife and Aquarium is building the

  • Volunteer scheme to foster ‘virtuous’ humanitarian spirit

    A senior education official said volunteer work contributes to solidarity and promotes a virtuous humanitarian spirit among the youth and communities. Serei Chumneas, undersecretary of state at the Ministry of Education, Youth and Sport, made the comment during the opening of a training programme called “

  • Chinese firms unveil preliminary results on metro, monorail for capital

    Minister of Public Works and Transport Sun Chanthol and representatives from China Road and Bridge Corp (CRBC) and its parent company, the state-owned China Communications Construction Co Ltd (CCCC), met on June 24 for talks on results of the firms’ preliminary study on a potential metro

  • Nestle’s debut may spur dairy market

    Leading confectionery manufacturer Nestle plans to invest in Cambodia by setting up an operation in the near future, a move majorly hailed by local dairy farmers as a means of boosting the fresh milk market in the Kingdom. During a visit by a delegation led

  • ACLEDA, WU to enable global money transfers

    Cambodia's largest commercial bank by total assets ACLEDA Bank Plc and global money transfer firm Western Union (WU) have partnered to offer customers cross-border money transfers to 200 countries via “ACLEDA mobile” app. In Channy, president and group managing director of ACLEDA, said the June 22 agreement