Again and again the Indonesian Government sector is predicted to be the champion for data leaks. This is not without reason, because this is not the first time the Indonesian government sector has experienced a data leak. Then what is the number of data leaks in Indonesia?

The Indonesian government sector is subscribed to data leaks, this is according to a report from Dark Tracer for the first quarter of 2022. The data leak reached 240,000 credentials out of 849,859 credentials, so if the percentage of data leakage is calculated at 28%, the data was successfully obtained through malware that infected the victim's computer in Indonesia.

Meanwhile, in terms of leaked domains and subdomains, of the 15,000 domains that experienced data leaks, 3,714 or 25% of them belonged to the Indonesian government from the domains reported to have experienced leaks.

Although the leaks look very large and worrying, not all of these data leaks are critical. This was revealed by Vaksincom Based on his observations, quite a lot of credential leaks that occur come from government service accounts such as complaint service accounts, licensing services or services that are informative and not critical.

But not a few critical, confidential or internal government services that experience leaks such as employee attendance, email accounts, taxpayer report data or institutions whose job is to take care of digital data security actually experience data leaks so that it needs to be an evaluation and learning to secure digital assets properly.

There are two considerations that make this credential data leak important even though it is only employee attendance.

1. If this leaked attendance data is collected and managed as big data, it will produce a lot of information that is successfully obtained by outsiders who have an interest in Indonesia such as ASN habits, ASN discipline, ASN motivation or mapping ASN activities throughout Indonesia which will indirectly provide quite accurate information on the condition of the government.
2. Leakage of attendance credentials indirectly reflects poor digital asset (credential) management capabilities.

The ability to manage digital assets well is crucial and it will certainly be dangerous if government employees who are not competent to manage digital assets actually get the responsibility of managing public digital data because if it is not managed properly, the data will easily leak and the people who own the data will receive the consequences of the data leak.

However, data leaks are not always negative, there are always two sides that can be taken from every event including this data leak. The positive side is that we see a positive trend in digitalization efforts or the implementation of information technology (IT) in government services in Indonesia which has experienced significant development. Although, this must still be carefully guarded because in many sectors this digitalization is still done half-heartedly and what happens is not digitalization to cut bureaucracy but an effort that seems to spend funds only.

Meanwhile, the result is only moving the bureaucracy into digital form so that the essence of digitization, whose main goal is efficiency, cutting bureaucracy and eradicating corruption, is not achieved because many parties have benefited from the existence of the bureaucracy. They will certainly try to hinder the course of digitalization (cutting bureaucracy) because it disturbs their rice pot.

One example is immigration services that have been implemented for years, but to this day it is still running in place because it is carried out half-heartedly. Despite the implementation of digitalization, to this day passport processing and other immigration matters are still very much complained about by the public.

Getting basic services such as a queue number to apply for a passport online is very difficult and must be scrambled. It often goes back to the old system because the implementation of digital systems is often problematic. In fact, basic population information such as electronic ID cards, KK and other supporting population information is already available digitally and can be accessed easily because it has been provided by Dukcapil.

In this case, despite massive data leaks in population data, the seriousness of the Dukcapil in digitizing population data and cutting bureaucracy is commendable because the available digital population database is quite reliable. This data is widely used as very important basic data by other services such as SIM card registration, opening banking accounts, taxpayer data to the Peduli Lindungi application which has experienced significant developments and played a major role in controlling the COVID-19 pandemic in Indonesia.

Reference:

https://inet.detik.com/security/d-6042567/240-ribu-kredensial-bocor-dari-pemerintah-indonesia

Want to know more information, please visit our website at:

https://agus-hermanto.com/

Don't forget to follow our other social media

Instagram          : hdnmetatech

linkedin              : https://www.linkedin.com/company/herdina-metatech-sinergi-corp

Facebook           : Herdina Metatech Sinergi Corp