What Is A PDN Server? This Is Understanding And Chronology Of Ransomware Attacks

YOGYAKARTA What is a PDN server is being a hot topic of conversation among the public after the National Cyber and Crypto Agency (BSSN) acknowledged that cyber attacks in the form of ransomware emerged at the Temporary National Data Center (PDNS). These disturbances caused disturbances in public services in as many as 210 government agencies.

Reporting from the Kominfo website, PDN servers are facilities owned by the Government for the placement of electronic systems and other related components for placement, storage, data processing, and data recovery. Definition of PDN is also in accordance with the Presidential Decree of the Electronic-Based Government System (SPBE) Article 1.

The purpose of holding a PDN server is to support digital-based government (digital government). That way public services can be carried out digitally. In addition, there are several considerations for holding PDN, namely as follows, reported by the Kominfo website.

The PDN facility itself is currently still under construction in four locations, namely Bekasi, Batam, Balikpapan, and Labuan Bajo.

Because it is still in the development stage, instead the Ministry of Communication and Information Technology (Kominfo) is holding a Temporary PDN (PNDS) service to accommodate the data center migration process from government agencies so that it can run gradually until the PDN is completed.

Unfortunately, PDNS 2 which stores data is actually affected by a cyber attack in the form of ransomware. The attack caused the server owned by a number of institutions and ministries to become paralyzed. One of the worst affected servers is the server of the Directorate General of Immigration. In the aftermath of the chaos in aircraft passenger service data and ships abroad.

Regarding the attack, the spokesman for the National Cyber and Crypto Agency (BSSN) Ariandi Putra explained that disturbances on the PDN server Meanwhile, 2 have occurred since June 17, 2024. At that time, information emerged about efforts to disable the Windows Defender security feature.

Ransomware attacks that attack PDNS servers themselves are how it works by turning off Windows Defender security systems so that malicious files can be installed on the server system. Ransomware starts entering June 17, on June 20 at 00.54 start to detect suspicious activity in the form of allowing malicious files to be installed in the system, deleting important files, and turning off running services.

Various files related to storage such as VSS, Hyper V Volume, VirtualDisk and Veaam vPower NFS died so that they could not run normally. The damage to the system spreads to the non-function of the public service system, one of which triggers chaotic public services at immigration at Soekarno-Hatta International Airport.

BSSN continues to try to overcome the chaos in the Temporary PDN. They claim to have found the source of the cyberattack, namely from a developer named Brain Cipher Ransomware from ransomware lockdown 3.0.

At its peak, Minister of Communication and Information Budi Arie Setiadi said that there were parties claiming to be PDN hijackers by asking for a ransom of 8 million US dollars. However, the Government will not negotiate with parties claiming to be hijackers. The government also continues to improve PDN disturbances.

In addition to the PDN server, visit VOI.id to get other interesting information.