Hacker claims breach of indonesian civil aviation authority

A hacker under the alias "Hacker Mail" claims to have breached Indonesia’s civil aviation authority. The hacker claims to have accessed over 3GB of sensitive data.

The breach was supposedly executed on June 27, 2024, and was detailed in a post on BreachForums. The hacker explained the role and responsibilities of the Directorate General of Civil Aviation (DGCA), which handles civil aviation administration and management within Indonesia.

To support their claims, the hacker provided samples of the compromised data,:

• User logs for unmanned aircraft certificates, remote pilot certificates, and unmanned aircraft operation approvals,
• Sensitive personal information of pilots, including IP addresses, login details, and timestamps from applications used by the DGCA on specific dates (August 15 and 16, 2022),
• Sample communication records between DGCA employees and pilots from April 13, 2022,
• ID card photos of employees,
• Usernames and passwords of employees who accessed a DGCA application.

The hacker claims to have stolen the following data sets:

• Employee data and passwords for all applications,
• Website user data,
• ID card photo data for all employees,
• Data of drone pilot certificate participants,
• Flight data related to aircraft,
• Personal data of pilots,
• Activities across Indonesian airports.

Despite the claims of the hacker, the DGCA website appeared to be functioning normally and there has been no official statement from the authorities regarding the alleged breach.

The claims come after the confirmed breach of government data center and the claimed breach of Indonesian military and police systems. It's possible that criminals are trying to exploit the current uncertainty within the institutions to execute scams with scraped data, but it's also possible that the breaches are real and related to the data center breach.