Indonesia says a cyberattack has compromised its data center but it won't pay the $8 million ransom

Your support helps us to tell the story

Support Now

Find out moreClose

As your White House correspondent, I ask the tough questions and seek the answers that matter.

Your support enables me to be in the room, pressing for transparency and accountability. Without your contributions, we wouldn't have the resources to challenge those in power.

Your donation makes it possible for us to keep doing this important work, keeping you informed every step of the way to the November election

Andrew Feinberg

White House Correspondent

Indonesia's national data center has been compromised by a hacking group asking for a $8 million ransom that the government won't pay, authorities said Monday.

The cyberattack has disrupted services of more than 200 government agencies at both the national and regional levels since June 20, said Samuel Abrijani Pangerapan, the director general of informatics applications with the Communications and Informatics Ministry.

Some government services have returned — immigration services at airports and elsewhere are now functional — but efforts continue at restoring other services such as investment licensing, Pangerapan told reporters.

The attackers have held data hostage and offered a key for access in return for the $8 million ransom, said PT Telkom Indonesia’s director of network & IT solutions, Herlan Wijanarko, without giving further details.

Wijanarko said the company, in collaboration with authorities at home and abroad, is investigating and trying to break the encryption that made data inaccessible.

Communication and Informatics Minister Budi Arie Setiadi told journalists that the government won’t pay the ransom.

“We have tried our best to carry out recovery while the (National Cyber ​​and Crypto Agency) is currently carrying out forensics,” Setiadi added.

The head of that agency, Hinsa Siburian, said they had detected samples of the Lockbit 3.0 ransomware.