- Ransomware attack in Indonesia compromises 282 government agencies, highlighting urgent need for stronger cybersecurity measures in Southeast Asia.
- Experts cite lack of data backups and funding as major issues; Indonesia plans new data centres to enhance security.
- AI-driven threats and advanced defenses in Singapore and Malaysia spotlight future risks in Southeast Asia.
Increasing cybersecurity concerns
A recent ransomware attack in Indonesia, which compromised data at over 200 government agencies, underscores the urgent need for stronger cybersecurity measures in Southeast Asia. The region’s rapid digital growth has made it increasingly vulnerable to sophisticated cyber threats.
Impact of the Indonesian cyberattack
The attack, attributed to the new ransomware strain Brain Cipher linked to the notorious LockBit 3.0 group, has severely affected Indonesia. The ransomware has encrypted data from 282 government agencies, rendering it unusable. As of July 9, only 43 agencies had restored their data using backups, while the rest had no backups available. The hackers demanded an $8 million ransom, threatening to release sensitive information. The Indonesian government has refused to pay.
Experts highlight the lack of data backups as a significant issue, with some agencies blaming insufficient funding. Allan Salim Cabanlong of the Global Forum on Cyber Expertise pointed out that the absence of backups is a common problem in many ASEAN countries and other regions due to the high cost of backup solutions.
Also read: Indonesia stands firm against $8 million cyber ransom demand
Also read: Indonesia recovers data after major cyber attack
Strengthening cybersecurity measures
In response to the attack, Indonesian authorities have mandated data backups for all government agencies and are progressing with plans to establish three larger national data centres. The first facility, set to open next month in Cikarang, West Java, will have a data storage capacity of 40 petabytes. Additional facilities are planned for Batam and Nusantara.
A report by PwC last year indicated that cybersecurity spending in Southeast Asia was expected to rise from $3.2 billion in 2021 to $6.1 billion by 2026. However, the region’s cybersecurity infrastructure remains relatively underdeveloped compared to other parts of the world.
Also read: Trend Micro uses Nvidia software tools for AI cybersecurity offering
Regional vulnerabilities and future risks
The MIT Technology Review Insights in 2022 ranked Indonesia at the bottom of its Cyber Defense Index among the world’s 20 largest digital economies. Cybersecurity firm Cyfirma warned that Indonesia’s status as Southeast Asia’s largest economy makes it an attractive target for cybercriminals, with attacks potentially damaging financially and reputationally, and deterring global investors.
In contrast, Singapore and Malaysia have more advanced cyber defenses thanks to their multistakeholder approaches and active cyber emergency response teams.
The rise of artificial intelligence adds another layer of risk, with potential for AI to be used in speeding up cyberattacks, posing significant future threats.
