fbpx
Frame-14

Privacy Ninja

        • DATA PROTECTION

        • CYBERSECURITY

        • Penetration Testing

          Secure your network against various threat points. VA starts at only S$1,000, while VAPT starts at S$4,000. With Price Beat Guarantee!

        • API Penetration Testing
        • Enhance your digital security posture with our approach that identifies and addresses vulnerabilities within your API framework, ensuring robust protection against cyber threats targeting your digital interfaces.

        • On-Prem & Cloud Network Penetration Testing
        • Boost your network’s resilience with our assessment that uncovers security gaps, so you can strengthen your defences against sophisticated cyber threats targeting your network

        • Web Penetration Testing
        • Fortify your web presence with our specialised web app penetration testing service, designed to uncover and address vulnerabilities, ensuring your website stands resilient against online threats

        • Mobile Penetration Testing
        • Strengthen your mobile ecosystem’s resilience with our in-depth penetration testing service. From applications to underlying systems, we meticulously probe for vulnerabilities

        • Cyber Hygiene Training
        • Empower your team with essential cybersecurity knowledge, covering the latest vulnerabilities, best practices, and proactive defence strategies

        • Thick Client Penetration Testing
        • Elevate your application’s security with our thorough thick client penetration testing service. From standalone desktop applications to complex client-server systems, we meticulously probe for vulnerabilities to fortify your software against potential cyber threats.

        • Source Code Review
        • Ensure the integrity and security of your codebase with our comprehensive service, meticulously analysing code quality, identifying vulnerabilities, and optimising performance for various types of applications, scripts, plugins, and more

        • Email Spoofing Prevention
        • Check if your organisation’s email is vulnerable to hackers and put a stop to it. Receive your free test today!

        • Email Phishing Excercise
        • Strengthen your defense against email threats via simulated attacks that test and educate your team on spotting malicious emails, reducing breach risks and boosting security.

        • Cyber Essentials Bundle
        • Equip your organisation with essential cyber protection through our packages, featuring quarterly breached accounts monitoring, email phishing campaigns, cyber hygiene training, and more. LAUNCHING SOON.

Indonesian Govt Blocks Access to RaidForums Hacking Forum After Data Leak

Indonesian Govt Blocks Access to RaidForums Hacking Forum After Data Leak

The Indonesian government is blocking access to the RaidForums hacking forum after the alleged personal information of Indonesian citizens was posted online.

On Friday, a newly registered forum member posted what they claim is a database containing 200 million records of personal information for Indonesian people.

The threat actor claims the database contains Indonesians’ KTP NIK number, KK number, full name, place of birth, date of birth, and other sensitive and personal information.

Forum post sharing allegedly leaked data
Forum post sharing allegedly leaked data

While the Indonesian government has not confirmed if the data is legitimate, they have performed a random investigation of 1 million records and believe a more thorough investigation needs to be conducted by the government’s information technology and cybersecurity agencies.

Also Read: Data Protection Officer Singapore | 10 FAQs

“To date, Kominfo has identified a larger amount of data and expanded its investigation of around 1 million data that sellers claim to be sample data,” says Indonesia’s Ministry of Communication and Information in a statement.

“From the results of a randomized investigation of around 1 million data, it can be concluded that Kominfo and BSSN need to carry out a more in-depth investigation together with BPJS Kesehatan.”

Kominfo believes the data may have originated from BPJS Kesehatan, the Social Security Administrator for Health who manages the the national healthcare service for the country.

As first reported by KrASIA, to prevent the further spread of the leaked data, the Ministry of Communication and Information Technology (Kominfo) is blocking access to the RaidForums forum.

In addition, Kominfo states that they have blocked access to links on “bayfiles.com, mega.nz, and anonfiles.com” that have been distributing the leaked data.

However, this is likely to lead to a game of whack-a-mole as more download links have already surfaced on the hacking forum and in other sites where threat actors commonly share leaked data.

Possible connection to 2020 voter information leak

In May 2020, almost exactly a year ago, a threat actor shared the 2014 voter information for almost 2 million Indonesians on RaidForums.

Forum post sharing Indonesian voter information
Forum post sharing Indonesian voter information

However, the General Elections Commission of Indonesia (KPU) denied being hacked and stated that the data was scraped from publicly available information.

Also Read: Practitioner Certificate in Personal Data Protection: Everything You Need to Know

At the time, the threat actor also claimed to have the data for 200 million Indonesians that they planned on releasing later.

It is not known if last week’s data leak is connected to this same threat actor.

0 Comments

KEEP IN TOUCH

Subscribe to our mailing list to get free tips on Data Protection and Data Privacy updates weekly!

Personal Data Protection

REPORTING DATA BREACH TO PDPC?

We have assisted numerous companies to prepare proper and accurate reports to PDPC to minimise financial penalties.
×

Hello!

Click one of our contacts below to chat on WhatsApp

× Chat with us