35M Indonesian Passport Data on Dark Web for $10K Raises Concerns: The personal information of approximately 35 million Indonesian passport holders is being sold on the dark web for $10,000.
Notorious hacktivist Bjorka is suspected to be behind the data leak, which has raised concerns about cybersecurity and the government’s ability to protect citizen data.
Key Takeaways Indonesian Passport Data on Dark Web:
Table of Contents
- The personal information of 35 million Indonesian passport holders is available for purchase on the dark web for $10,000.
- The suspected hacktivist Bjorka, known for criticizing the Indonesian government, is believed to be responsible for the data leak.
- The incident highlights the need for improved cybersecurity measures and government efforts to protect citizen data.
The personal information of nearly 35 million Indonesian passport holders is currently up for sale on the dark web for $10,000.
The notorious hacktivist Bjorka, who has gained a reputation for publicly criticizing the Indonesian government and sharing damaging information about lawmakers on social media, is suspected to be behind the data leak.
This incident has prompted an investigation into a possible breach of the Directorate General of Immigration’s network.
Suspected Data Breach and Sale on the Dark Web
According to Indonesian security researcher Teguh Aprianto, a hacker has listed the details of Indonesian passport holders, including their full names, birthdates, genders, passport numbers, and passport validity dates, for sale.
Aprianto discovered this information and shared it in a Twitter thread. The threat actor, who goes by the name Bjorka, provided a sample of one million data records to validate the authenticity of the data.
The threat actor’s post mentioned that the complete 4-gigabyte data dump is available for purchase at the price of $10,000.
Government Investigation and Response
The Ministry of Communication and Informatics, also known as Kominfo, has initiated an investigation into the alleged theft of personal information affecting 34.9 million Indonesians.
Director-General of Informatics Applications Semuel A. Pangerapan stated that the ministry has not yet confirmed the occurrence of a massive data leak. Kominfo, in collaboration with the National Cyber and Crypto Agency, the Directorate General of Immigration, and the Ministry of Law and Human Rights, will conduct a thorough investigation and publish its findings in due course.
Pangerapan emphasized the importance of digital platform providers and personal data managers enhancing the security of users’ personal data and ensuring the security of their electronic systems.
The Involvement of Bjorka
The data sample discovered by Teguh Aprianto was posted by Bjorka, a notorious Indonesian hacktivist who gained infamy in September 2022 for stealing 1.3 billion SIM card data from the servers of the Indonesian Ministry of Communication and Information Technology.
Bjorka then proceeded to sell the data on the dark web. This hacktivist is also suspected of being responsible for the theft of personal information from 17 million customers of the Indonesian electricity company PLN in August 2022.
Concerns and Cybersecurity Landscape in Indonesia
The availability of Indonesian passport data on the dark web highlights the vulnerabilities and cybersecurity challenges faced by the country.
According to threat intelligence company Cyble, Indonesia is one of the most targeted nations for cyberattacks in Southeast Asia. In the first quarter of 2022 alone, the country experienced over 11 million cyberattacks.
The incident underscores the need for robust cybersecurity measures and reinforces the urgency for the government to strengthen its efforts in safeguarding citizen data.
Conclusion to 35M Indonesian Passport Data on Dark Web
The sale of personal information from 35 million Indonesian passport holders on the dark web raises significant concerns regarding cybersecurity and the protection of citizen data.
The suspected involvement of hacktivist Bjorka adds to the gravity of the situation. It is crucial for the Indonesian government and relevant agencies to address the vulnerabilities and enhance cybersecurity measures to prevent further data breaches and protect the privacy of Indonesian citizens.
