Indonesia reports government data center hit by ransomware

The Indonesian government has reported that its national datacenter was compromised by a ransomware attack on June 20. The attack, attributed to a variant of the LockBit 3.0 ransomware called Brain Cipher, disrupted multiple services across the country.

The data center is operated by the Ministry of Communication and Information Technology (Kominfo) and known as the National Data Center (Pusat Data Nasional, PDN)

The ransomware incident has affected at least 210 institutions, leading to disruptions in various public services. Among the most impacted were digital services for immigration, which resulted in long queues at airports due to the temporary shutdown of visa, passport, and residence permit processing systems. Online registration for new students in some regions was unavailable, prompting local governments to extend the registration window.

No details are disclosed about exfiltrated data or individuals impacted in this breach.

The government claims they have managed to restore most of the affected immigration services and migrate crucial data to the cloud. An investigation into the attack is ongoing, and the government has isolated the infected systems to prevent further damage.

Despite the disruption, the communications ministry, led by Minister Budi Arie Setiadi, has assured the public that efforts to restore full functionality are underway.