Indonesia Restored Services Post National Data Center Cyberattack
The Brain Cipher ransomware attack on June 20 disrupted 211 public services initially, impacting 282 within days.
Ashish Khaitan July 14, 2024
Share on LinkedInShare on Twitter
Indonesia has achieved a new milestone in restoring 86 public services following the Temporary National Data Center cyberattack. The cyberattack affected operations across 16 state institutions, including services for permits and scholarships.
Coordinating Minister for Political, Legal, and Security Affairs, Hadi Tjahjanto, emphasized the collaborative efforts involved in the recovery process, stating, “Efforts to restore PDNS 2 services were carried out by a team consisting of the Ministry of Communication and Information, BSSN, PT Telkom Tbk, and active participation from all tenants”, reported The Star.
Indonesia Restores 86 Public Services Following the Temporary National Data Center Cyberattack
The cyberattack on the Temporary National Data Center, perpetrated by Brain Cipher ransomware on June 20, initially disrupted 211 public services, escalating to impact 282 services within days. Refusing to negotiate with the ransomware group demanding $8 million, the Indonesian government opted for a rigorous recovery strategy instead.
“We divide it into three zones. The incident-affected data on PDNS 2 is in the red zone, and it is set in the process of quarantine,” explained Tjahjanto regarding the meticulous data handling approach. This method involves isolating compromised data in the red zone, fortifying security and scanning for vulnerabilities in the blue zone, and finally reintroducing data to users through the green zone.
Since the attack, substantial progress has been made, with 86 services successfully reinstated as of the latest update. These services include critical functions such as licensing and information portals managed by various ministries and institutions, including the Ministry of Education, Culture, Research, and Technology.
Indonesian Minister’s Take on the Cyberattack on the Temporary National Data Center
Minister Hadi Tjahjanto further disclosed the specific services restored, noting, “As of July 12, at 17.30 WIB, 86 services from 16 ministries, institutions, and local governments have gone live.”
Looking ahead, Tjahjanto reiterated the government’s commitment to cybersecurity resilience, stating, “The government is cleaning up data from malware or suspicious viruses from data that have been saved while strengthening the infrastructure security parameters.
The coordinated response highlights Indonesia’s proactive approach to cybersecurity, leveraging expertise from multiple agencies and stakeholders to mitigate risks and restore operational continuity. Despite the challenges posed by the cyberattack, Indonesia remains steadfast in its efforts to bolster digital infrastructure security and safeguard public services.
The attack on PDNS 2 marked a significant challenge for Indonesia’s cybersecurity landscape, prompting a swift and coordinated response to mitigate its impact. The government’s decision not to negotiate with ransomware perpetrators signals a firm stance against cyber extortion, prioritizing the integrity of public services and national security.
Efforts to restore affected services are part of a phased strategy, emphasizing data security and operational continuity. “We’ve divided the recovery process into three zones: red, blue, and green, ensuring that data is thoroughly cleansed and fortified before being reintegrated,” Tjahjanto elaborated.