Data is an invaluable asset in this digital age, and thus, data protection is receiving special attention in many countries and organizations. One of the biggest threats to data security worldwide is ransomware attacks. Recently, the National Data Center (PDN) faced a ransomware attack.
The ransomware that attacked PDN is known to be a new variant of LockBit 3.0 named “Brain Cipher”. Regarding ransomware, LockBit is not a “new face”. According to Nikkei Asia, they have been responsible for cyber attacks in several countries in recent years, including the Philippines and Malaysia.
Based on a survey by the Indonesian Internet Service Providers Association (APJII) in 2024, the number of internet users in Indonesia is estimated to reach around 221.56 million by 2024. This figure represents an increase of 2.67% compared to the previous period.
This growth indicates Indonesia’s great potential to become a key player in the digital economy of Southeast Asia. Hence, it is not surprising that the massive and rapid digital transformation of the country also increases challenges such as cyber threats. This is evident from Statista’s findings, which recorded the number of data breaches in Indonesia reaching around 8.9 million cases by the first quarter of 2023.
Data leaks not only cause losses in terms of losing important information that is private, causing a loss of public trust in business, as well as considerable material losses. The reason is, cyber criminals do not hesitate to ask for large ransoms. In the PDN case, the perpetrators asked for US$ 8 million or around Rp 129.4 billion to the government.
The ransomware attack on PDN warns about how cyberattacks can have widespread impacts. PDN stores and manages important data used by various government agencies and public sectors. This attack not only disrupts daily operations but also has the potential to threaten national security.
Several steps need to be taken to address and prevent ransomware attacks:
1. Early Detection and Rapid Response
Implementing monitoring systems such as Security Information and Event Management (SIEM) is crucial to detect suspicious activities in real time. With such systems in place, organizations or businesses can quickly identify potential cyberattacks. Furthermore, they can take action to isolate and mitigate threats before causing more significant damage. Rapid response can minimize the impact and recovery time.
2. Routine Data Backup
Conducting routine data backups is a crucial step in cybersecurity strategies. Backups should be scheduled regularly, ideally daily, and stored in separate and secure locations. Offline backups or cloud backups isolated from the main network can prevent ransomware from spreading to backup data. With reliable backups, organizations can quickly restore lost or damaged data without paying a ransom to attackers.
3. System Updates
Keeping operating systems, software, and applications up to date is vital to close security gaps that cybercriminals can exploit. Organizations should have strict and automated update policies to ensure all devices are always protected by the latest security patches.
4. Education and Training
Educating and training employees on cyber threats is also a key component of organizational defense. Employees must understand how to identify phishing emails, malicious links, and best security practices such as using strong passwords and managing access. Regular training and cyberattack simulations can enhance employees’ awareness and skills in facing these threats.
5. Use of Security Technology
Utilizing advanced security technology is an important step in protecting networks and data. Firewalls can prevent unauthorized access to the network, while antivirus and antimalware can detect and remove malicious software. Additionally, data encryption ensures that sensitive data remains protected even if it is stolen. The combination of various security technologies helps create a strong and comprehensive protection layer.
When it comes to strengthening businesses against evolving cybersecurity challenges, working with a reliable and expert partner is paramount. Defender Nusa Semesta (Defenxor) is a subsidiary of CTI Group, a subholding of PT Anabatic Technologies Tbk, and an ideal choice for businesses looking to strengthen their security infrastructure.
Anabatic is a leading public listed IT company in Indonesia. We aim to deliver solutions required by companies to compete in today’s digital economy whereas now it is highly necessary to review and revise a company’s business processes. In countering global challenges, Anabatic is at hand to assist you through these changes.
Defenxor provides comprehensive and proactive solutions to protect your business. From sophisticated detection, response, and protection to ensuring compliance with the highest security standards. Enhance your business security with Defenxor, a trusted partner in the relentless pursuit of protecting data and ensuring its resilience.