TheJakartaPost
Please Update your browser
Your browser is out of date, and may not be compatible with our website. A list of the most popular web browsers can be found below.
Just click on the icons to get to the download page.
President Jokowi orders audit of data centres after cyberattack
Last week's cyberattack, the worst in Indonesia in recent years, has disrupted multiple government services including immigration and operations at major airports.
Change text size
Gift Premium Articles
to Anyone
Share the best of The Jakarta Post with friends, family, or colleagues. As a subscriber, you can gift 3 to 5 articles each month that anyone can read—no subscription needed!
Speaking to reporters at the sideline of HIPMI anniversary in Jakarta on June 10, 2024, President Joko “Jokowi“ Widodo explains why investing is better than importing rice . (JP/Deni Ghifari)
P
resident Joko "Jokowi" Widodo ordered on Friday an audit of government data centres after officials said the bulk of data affected by a recent ransomware cyberattack was not backed up, exposing the country's vulnerability to such attacks.
Last week's cyberattack, the worst in Indonesia in recent years, has disrupted multiple government services including immigration and operations at major airports.
The government has said more than 230 public agencies, including ministries, had been affected, but has refused to pay an $8 million ransom demanded to retrieve the encrypted data.
Responding to the cyberattack, the state auditor said the President instructed it to examine the country's data centres.
The audit would cover "governance and the financial aspect", said Muhammad Yusuf Ateh, who heads Indonesia's Development and Finance Controller (BPKP), after attending a cabinet meeting led by Jokowi on Friday.
Hinsa Siburian, an official who chairs Indonesia's cyber security agency known by its acronym BSSN, has said 98 percent of the government data stored in one of the two compromised data centres had not been backed up.
"Generally we see the main problem is governance and there is no back-up," he told a parliamentary hearing late on Thursday.
Some lawmakers dismissed the explanation.
"If there is no back up, that's not a lack of governance," said Meutya Hafid, the chair of the commission overseeing the incident. "That's stupidity".
A BSSN spokesperson did not immediately respond when asked whether it would be possible to recover the encrypted data.
Budi Arie Setiadi, Communications and Information Minister, said the ministry had back-up capacity at the data centres, but it was optional for government agencies to use the service.
He said government agencies did not back up the data due to budget constraints, adding this would soon be made mandatory.
The cyberattack has sparked criticism of the minister on social media in Indonesia.
Digital advocacy group SAFEnet started a petition calling for Budi's resignation, citing his lack of responsibility over repeated cyber attacks.
Budi sent Reuters a separate petition calling for him to stay on as minister when asked for comment on calls for him to resign.
The minister told the House that a "non state actor" seeking money was believed to be behind the attack and that government services should be fully restored by August.
Ransomware attackers use software to encrypt data and demand payment from victims for restoring the data. The government has said the attacker in this particular incident used an existing malicious software called Lockbit 3.0.
