Indonesian government says national data center was hit in ransomware attack - but it won't pay up

A laptop with a red screen with a white skull on it with the message: "RANSOMWARE. All your files are encrypted."
(Image credit: Getty Images)

The government of Indonesia has suffered a ransomware attack that crippled many of its organizations and caused quite a nuisance for its citizens - but says it won't be held to ransom

Government officials confirmed its National Data Center (PDN) was struck on June 20, with the attack apparently organized by an affiliate of LockBit, with the encryptor used was LockBit 3.0, with some saying the variant’s name is Brain Cipher. 

At least 210 national institutions were affected by the incident, The Register reported, citing local media, including the nation’s immigration office, which led to problems in issuing passports, visas, residence permits, and similar - leading to long lines at airports around the country.

Not paying up

Remedying a ransomware attack can be done in two ways - either the victims pay up and (hope to) get the decryption key which allows them to resume operations, or they restore an airgapped backup and then negotiate about stolen files.

The country’s officials didn’t say if the ransom had been paid or not. The attackers asked for roughly $8 million in cryptocurrency.

Besides Business Email Compromise (BEC), ransomware remains one of the most destructive and disruptive cyberattack methods out there. Hundreds of hacking collectives are buying access to important institutions from initial access brokers, and then renting out ransomware encryptors from different ransomware-as-a-service providers, such as LockBit. 

They then proceed to exfiltrate sensitive data from the victims, before encrypting all files. That way, should the victims restore their systems from a backup, the attackers would still have sensitive data which they can threaten to release online unless a payment is made. 

Via The Register

More from TechRadar Pro

Sead is a seasoned freelance journalist based in Sarajevo, Bosnia and Herzegovina. He writes about IT (cloud, IoT, 5G, VPN) and cybersecurity (ransomware, data breaches, laws and regulations). In his career, spanning more than a decade, he’s written for numerous media outlets, including Al Jazeera Balkans. He’s also held several modules on content writing for Represent Communications.

Read more
A laptop with a red screen with a white skull on it with the message: "RANSOMWARE. All your files are encrypted."
Bad news - businesses who pay ransomware attackers aren’t very likely to get their data back
Representational image of a cybercriminal
Should ransomware payments be illegal?
A laptop with a red screen with a white skull on it with the message: "RANSOMWARE. All your files are encrypted."
Less than half of ransomware incidents end in payment - but you should still be on your guard
A group of 7 hackers, 6 slightly blurred in the background and one in the foreground, all wearing black with hoods pulled up over their heads. You cannot see their faces. The hacker in the foreground sits with an open laptop in front of them. The background, behind the hackers, is a Chinese flag
China government-linked hackers caught running a seriously dangerous ransomware scam
sewage water treatment
Southern Water denies claims it offered $750,000 ransom to ransomware hackers
A laptop with a red screen with a white skull on it with the message: "RANSOMWARE. All your files are encrypted."
More reports claim 2024 was the worst year for ransomware attacks yet
Latest in Security
Data Breach
Thousands of healthcare records exposed online, including private patient information
China
Juniper patches security flaws which could have let hackers take over your router
Representational image depecting cybersecurity protection
GitLab has patched a host of worrying security issues
Ai tech, businessman show virtual graphic Global Internet connect Chatgpt Chat with AI, Artificial Intelligence.
AI agents can be hijacked to write and send phishing attacks
China
Volt Typhoon threat group had access to American utility networks for the best part of a year
Abstract image of cyber security in action.
MassJacker malware targets those looking for pirated software
Latest in News
A super close up image of the Google Gemini app in the Play Store
It's official: Google Assistant will be retired for phones this year, with Gemini taking over
Quordle on a smartphone held in a hand
Quordle hints and answers for Sunday, March 16 (game #1147)
NYT Strands homescreen on a mobile phone screen, on a light blue background
NYT Strands hints and answers for Sunday, March 16 (game #378)
NYT Connections homescreen on a phone, on a purple background
NYT Connections hints and answers for Sunday, March 16 (game #644)
Three iPhone 16 handsets on show
Apple could launch an iPhone 17 Ultra this year – but we've heard these rumors before
Super Mario Odyssey
ChatGPT is the ultimate gaming tool - here's 4 ways you can use AI to help with your next playthrough