Investigate Hacking, BAIS Server Deactivated

Head of the Indonesian National Armed Forces Information Center (Kapuspen) Maj. Gen. Nugraha Gumilar said the TNI's Strategic Intelligence Agency (BAIS) server was temporarily disabled for investigation after hacking of BAIS data by MoonzHaxor hackers.

Nugraha also confirmed that the hacked data is old information that was released this year.

"The data that was hacked is old data and released (report, ed.) in 2024. Currently, the server has been deactivated for further investigation," said the Head of the TNI Headquarters as reported by ANTARA, Wednesday, June 26.

On social media timeline X, the @FalconFeeds.io account which regularly monitors cyber activity, including from the dark site (dark web) on Monday (24/6) announced the hacking by hacker MoonzHaxor against the BAIS system so that they claimed to have controlled a number of data belonging to BAIS TNI.

Hackers in the dark data buying and selling forum on the webBreachForum also provide examples of (sample) data they control, and promise complete data (full data set) to those who want to pay. The price MoonzHaxor offered in the forum is USD 1,000 for a database of 2,000 users measuring 773 kilobita (kb), and USD 7,000 for classified data measuring 33.7 gigabita.

In the same upload, MoonzHaxor also offered to show a number of data he hacked from the BAIS database, namely classified documents in 2020-2022.

The same hacker last week (22/6) also announced he succeeded in hacking the Indonesian Automatic Finger Indentification System (INAFIS) system of the Indonesian National Police. The data claimed to have been hacked from the INAFIS system includes fingerprints, email addresses, and SpringBoot applications with several configurations.

The data was sold by MoonzHaxor for 1.000 US dollars (equivalent to IDR 16.3 million).

However, the Head of the National Cyber and Crypto Agency (BSSN) Lt. Gen. TNI Retired. Hinsa Siburian during a press conference in Jakarta, Monday, explained that the data claimed to have been hacked by MoonzHaxor were old data.

"We have confirmed this with the police, that it is their old data that is traded on the web," said Hinsa.

Hinsa emphasized that the National Police system is currently not experiencing problems and is still running well.

"We assure you that their system is running well," he said.

On the same occasion, Hinsa also confirmed that the alleged INAFIS data hacking was not related to the cyber attack incident against the Temporary National Data Center (PDNS) 2.