Cybersecurity Group Suspects Chinese Hackers Compromised Indonesian Govt

13 September 2021 13:46 WIB

Hacker illustration. mic.com

TEMPO.CO, Jakarta - Claims have emerged involving Chinese hackers breaching internal networks of Indonesian government ministries and agencies, one of which include the state Intelligence Agency (BIN), raising cybersecurity concerns. 

The report came from privately held cybersecurity firm Recorded Future through its media subsidiary The Record, which stated that the intrusion initially was discovered by its research division against threats, Insikt Group.

They linked the security threat to Mustang Panda, a Chinese threat actor known for its cyber-espionage campaigns targeting the Southeast Asian region. Insikt first discovered this in April 2021 when they “detected PlugX malware command and control (C&C) servers, operated by the Mustang Panda group, communicating with hosts inside the networks of the Indonesian government,” their website states.

The series of communications were later traced back to at least March 2021, however, Insikt wrote that the intrusion point and delivery method of the malware are still unclear.

Insikt Group researchers reportedly notified authorities in Indonesia regarding their finding in June this year and then again in July. Officials did not provide feedback for the reports.

The Record claims that the most sensitive target compromised by the cyber attack BIN had not returned requests for comments. 

Read: EHAC Data Breach Case Dropped; Police Find No Attempts of Data Retrieval

THE RECORD | TEMPO.CO



Bjorka Returns with Personal Info of BSSN Chief

6 hari lalu

Bjorka Returns with Personal Info of BSSN Chief

After going quiet for quite some time, the hacker that goes by the name Bjorka returns to leak the personal data of yet another high-ranking Indonesia


DPR Increases BSSN Budget after Recent Cyberattacks by Hacker Bjorka

13 hari lalu

DPR Increases BSSN Budget after Recent Cyberattacks by Hacker Bjorka

DPR agreed to increase the budget for the National Cyber and Encryption Agency (BSSN) to Rp624 billion for 2023 to combat rising cyberattacks.


Personal Data Protection Law Unrelated to Bjorka Incident: Mahfud MD

13 hari lalu

Personal Data Protection Law Unrelated to Bjorka Incident: Mahfud MD

The government asserted that the passing of the Personal Data Protection Bill (RUU PDP) into law was not motivated by hacker Bjorka .


Expert Comments on Effectiveness of Personal Data Protection Act

14 hari lalu

Expert Comments on Effectiveness of Personal Data Protection Act

A digital forensic expert doubts that the Personal Data Protection Act will suddenly eradicate data breaches.


Indonesia to Establish Domestic Cloud Computing Ability

15 hari lalu

Indonesia to Establish Domestic Cloud Computing Ability

Presidential Office plans to establish a domestic cloud computing service following the recent series of data breaches.


Police Charge Madiun Man under ITE Law for Helping Bjorka

16 hari lalu

Police Charge Madiun Man under ITE Law for Helping Bjorka

A young man from Madiun, MAH, who was arrested previously for helping a hacker Bjorka is charged under a number of articles of ITE Law.


Notorious Hacker Bjorka Denies Police Arrest Claim

19 hari lalu

Notorious Hacker Bjorka Denies Police Arrest Claim

The hacker known as Bjorka has responded to the report of his arrest by the police.


Police HQ Comment on Alleged Arrest of Hacker Bjorka

20 hari lalu

Police HQ Comment on Alleged Arrest of Hacker Bjorka

National Police Main HQ (Mabes Polri) commented on the alleged arrest of the hacker who carries the pseudonym, Bjorka.


Govt Demands Better Private Sector Cybersecurity Amid 'Bjorka' Data Breach

21 hari lalu

Govt Demands Better Private Sector Cybersecurity Amid 'Bjorka' Data Breach

Private electronic service providers were asked by the government to beef up their cybersecurity measures amidst rampant Bjorka data breaches.


4 Data Breach Confirmation Websites You Can Use

21 hari lalu

4 Data Breach Confirmation Websites You Can Use

Here are 4 websites to ensure whether our personal data has been compromised or not in a data breach case.