Security News > 2024 > June > Ransomware disrupts Indonesia’s national data centre, LockBit gang claims US Federal Reserve breach
Ransomware attackers wielding a LockBit variant dubbed Brain Cipher have disrupted a temporary national data center facility which supports the operations of 200+ Indonesian government agencies and public services.
Indonesia is working on creating four national data centers to support digital government efforts.
In the meantime, two temporary national data centers - one in Jakarta and the other one in Surabaya - have been stood up.
The National Cyber and Crypto Agency, the Communications Ministry, the cyber crime department of the Indonesian National Police and Telkom Indonesia with the help of two IT companies are investigating the breach.
Infamous ransomware-as-a-service group LockBit has previously hit Bank Syariah Indonesia, which didn't pay the ransom and has had its stolen data leaked online.
It is unclear whether this latest attack can be linked to the LockBit RaaS or one of its affiliates, since the LockBit 3 builder has been leaked in September 2022 and can therefore be used by any threat actor to create customized versions on the ransomware.
News URL
https://www.helpnetsecurity.com/2024/06/25/lockbit-indonesia-us-fed/
Related news
- Police arrest four suspects linked to LockBit ransomware gang (source)
- LockBit Ransomware and Evil Corp Members Arrested and Sanctioned in Joint Global Effort (source)
- US lawmakers seek answers on alleged Salt Typhoon breach of telecom giants (source)
- Tech giant Nidec confirms data breach following ransomware attack (source)
- Crypt Ghouls Targets Russian Firms with LockBit 3.0 and Babuk Ransomware Attacks (source)
- Ransomware Gangs Use LockBit's Fame to Intimidate Victims in Latest Attacks (source)
- Henry Schein discloses data breach a year after ransomware attack (source)
- Black Basta ransomware poses as IT support on Microsoft Teams to breach networks (source)
- Fog ransomware targets SonicWall VPNs to breach corporate networks (source)
- LA housing authority confirms breach claimed by Cactus ransomware (source)