Security News > 2024 > June > Ransomware disrupts Indonesia’s national data centre, LockBit gang claims US Federal Reserve breach
Ransomware attackers wielding a LockBit variant dubbed Brain Cipher have disrupted a temporary national data center facility which supports the operations of 200+ Indonesian government agencies and public services.
Indonesia is working on creating four national data centers to support digital government efforts.
In the meantime, two temporary national data centers - one in Jakarta and the other one in Surabaya - have been stood up.
The National Cyber and Crypto Agency, the Communications Ministry, the cyber crime department of the Indonesian National Police and Telkom Indonesia with the help of two IT companies are investigating the breach.
Infamous ransomware-as-a-service group LockBit has previously hit Bank Syariah Indonesia, which didn't pay the ransom and has had its stolen data leaked online.
It is unclear whether this latest attack can be linked to the LockBit RaaS or one of its affiliates, since the LockBit 3 builder has been leaked in September 2022 and can therefore be used by any threat actor to create customized versions on the ransomware.
News URL
https://www.helpnetsecurity.com/2024/06/25/lockbit-indonesia-us-fed/
Related news
- US charges Russian-Israeli as suspected LockBit ransomware coder (source)
- LA housing authority confirms breach claimed by Cactus ransomware (source)
- Ransomware fiends boast they've stolen 1.4TB from US pharmacy network (source)
- US charges Phobos ransomware admin after South Korea extradition (source)
- T-Mobile US 'monitoring' China's 'industry-wide attack' amid fresh security breach fears (source)
- US space tech giant Maxar discloses employee data breach (source)
- Phobos ransomware administrator faces US cybercrime charges (source)
- Helldown ransomware exploits Zyxel VPN flaw to breach networks (source)
- Russian suspected Phobos ransomware admin extradited to US over $16M extortion (source)
- Mega US healthcare payments network restores system 9 months after ransomware attack (source)