Logo of Phnom Penh Post newspaper Phnom Penh Post - Latest cyberattack on Indonesia gov’t ‘steals’ cop data

Latest cyberattack on Indonesia gov’t ‘steals’ cop data

Content image - Phnom Penh Post
At least ten government agencies have fallen victim to cyberattacks reportedly committed by Mustang Panda, a China-based hacker group, in the latest of a series of state data breaches. THE JAKARTA POST

Latest cyberattack on Indonesia gov’t ‘steals’ cop data

A recent alleged police data breach shows that not only is the Indonesian general public susceptible to having their data stolen and traded online amid the absence of data protection laws, but also law enforcement officials.

In a Twitter post on November 17, user @son1x777 claimed to have hacked into the National Police system and stolen the personal data of thousands of police officers, from their dates of birth to badge numbers. By November 20, the account had been suspended for violating Twitter rules.

National Police spokesman Inspector General Dedi Prasetyo has said that the police were still looking into the alleged data breach, kompas.com reported.

Wahyudi Djafar from the Institute for Policy Research and Advocacy (Elsam), which has been advocating for personal data protection laws for years, said the police must act fast to mitigate further data leakages and identify security vulnerabilities in their system.

“The police must also notify the subjects [police personnel] whose data has been compromised,” Wahyudi told the Jakarta Post.

He said the alleged incident underlined the urgent need for the personal data protection bill to be passed into law, which will provide guidelines for law enforcement agencies to impose stern penalties against the illegal use of personal data.

The bill’s deliberation at the House of Representatives has been slow due to a lack of consensus among the government and lawmakers over the design of a data protection agency.

House Deputy Speaker Sufmi Dasco Ahmad from the Gerindra Party previously said lawmakers would see to it that the bill was passed into law during the current sitting period, before lawmakers go into recess in mid-December.

Pratama Persadha from think tank Communication and Information System Security Research Center (CISSReC) found two different sets of leaked information, including data related to internal police investigations on alleged police misconduct.

“There is a possibility that the attack was a form of hacktivism that will help the hackers build a reputation or introduce them to the world,” Pratama said.

He noted several other past cyberattacks on the police, including website defacement and hacking. He said another set of data on police personnel was currently still up for sale on online hacking forum RaidForums by an account with the username Stars12n.

The alleged police data breach occurred only weeks following cyberattacks on state agencies last month – one related to the National Cyber and Encryption Agency (BSSN) and another that puts child victims of abuse at risk.

The latter centred on the hacking of the Indonesian Child Protection Commission’s (KPAI) database of the personal information of people who had filed reports on alleged child abuse cases, like bullying, kidnapping, violence against children and rape.

The breach also exposed the names of the children and their guardians, as well as ID card numbers, mailing and email addresses and phone numbers of the persons who reported the alleged abuse.

“Low cyber security awareness is also one of the reasons why government websites often become targets of hacking,” Pratama said, urging policymakers to immediately enact the data protection bill.

A member of the House Commission I overseeing defence, foreign affairs, information and intelligence, Irine Yusiana Roba Putri from the Democratic Party of Struggle (PDI-P), said policymakers could not wait for another data breach to get serious about deliberating the data protection bill.

“We need to have proper regulations and competent regulators so the personal data of citizens and those managed by state institutions can be properly protected,” Irine said.



  • Ministry orders all schools, public and private, to close for SEA Games

    From April 20 to May 18, all public and private educational institutions will be closed to maintain order and support Cambodia's hosting of the 32nd SEA Games and 12th ASEAN Para Games, said a directive from the Ministry of Education, Youth and Sport. Cambodia will host the

  • Almost 9K tourists see equinox sunrise at Angkor Wat

    Nearly 9,000 visitors – including 2,226 international tourists – gathered at Angkor Wat on March 21 to view the spring equinox sunrise, according to a senior official of the Siem Reap provinical tourism department. Ngov Seng Kak, director of the department, said a total of 8,726 people visited Angkor Wat to

  • Angkor Beer strengthens national pride with golden new look and fresher taste

    Angkor Beer – the "Gold of Angkor" – has a new look, one that is more stylish and carries a premium appeal, as well as a fresher taste and smoother flavour, making it the perfect choice for any gathering. Angkor Beer recently launched its new design, one

  • Water supply authority assures public shortages over early ‘24

    The Phnom Penh Water Supply Authority (PPWSA) asked for understanding from Phnom Penh residents in some communes where water pressure is weak. They assured residents that all supply issues will be resolved by early 2024, but have suggested that residents use water sparingly in the meantime.

  • Khmer ballet documentary debuts April 1

    A new documentary, The Perfect Motion, or Tep Hattha in Khmer, will premiere to the public on April 1. The documentary film follows two intertwined storylines: the creation of a show called Metamorphosis by the late Princess Norodom Buppha Devi (her very last production) and the

  • EU’s Sokha resolution ‘a sovereign rights breach’

    The National Assembly (NA) said the European Parliament (EP) did not respect the Kingdom’s independence and sovereignty when it passed a resolution strongly critical of the recent conviction and sentencing of former opposition leader Kem Sokha for “treason”. On March 16, the EP issued a