Indonesia has achieved a new milestone by restoring 86 public services following a cyberattack on the Temporary National Data Center, which affected the operations of 16 government agencies, including permit and scholarship services.
Coordinating Minister for Political, Legal and Security Affairs Hadi Tahjanto emphasised the collaboration in the restoration process, saying: “The restoration of PDNS 2 services was carried out by a team composed of the Ministry of Communications and Information, BSSN and PT Telkom Tbk, with the active participation of all tenants,” The Star reported.
Indonesia restores 86 public services after temporary cyberattack on national data center
A cyberattack on a temporary national data center carried out by BrainCypher ransomware on June 20 initially disrupted 211 public services, affecting 282 within days. The Indonesian government refused to negotiate with the ransomware group, which was demanding $8 million, opting instead for a strict recovery strategy.
“We divide it into three zones. The data affected by the PDNS 2 incident is in the red zone and is put into a quarantine process,” Tjahjanto said, explaining their meticulous data handling approach. The method involves isolating compromised data in the red zone, tightening security and scanning for vulnerabilities in the blue zone, and finally making the data available to users again through the green zone.
Significant progress has been made since the attack, with 86 services successfully restored as of the last update. These services include critical functions such as licensing and information portals managed by various ministries and agencies, including the Ministry of Education, Culture, Research and Technology.
Indonesian Minister’s Statement on Cyberattack on Temporary National Data Center
Hadi Tjahjanto also clarified the specific services that had been restored, saying, “As of 6:30 pm on July 12, 86 services from 16 ministries, agencies and local authorities are operational.”
Looking ahead, Tjahjanto reiterated the government’s efforts to strengthen cybersecurity resilience, saying, “The government is strengthening the security parameters of its infrastructure while cleaning stored data of malware and suspected viruses.”
This coordinated response highlights Indonesia’s proactive approach to cybersecurity, leveraging the expertise of multiple agencies and stakeholders to mitigate risks and restore operational continuity. Despite the challenges posed by cyber attacks, Indonesia remains steadfast in its efforts to strengthen the security of its digital infrastructure and protect public services.
The PDNS 2 attack posed a major challenge to Indonesia’s cybersecurity, requiring a swift and coordinated response to mitigate its impact. The government’s decision not to negotiate with the ransomware perpetrators demonstrates its firm stance against cyber extortion, prioritizing the integrity of public services and national security.
The effort to restore affected services is part of a phased strategy that emphasizes data security and operational continuity. “We are dividing the recovery process into three zones — red, blue, and green — to ensure that data is thoroughly cleaned and enhanced before being reintegrated,” Tjahjanto detailed.
