KPU Site Hacked, 204 Million Voter Data Sold For IDR 1.2 Billion

The KPU site was the target of a cyberattack from hackers. A hacker with the anonymous name "Jimbo" claims to have hacked the kpu.go.id site, Tuesday, November 28, 2023 (@KRMTRoySuryo1)

JAKARTA - Hackers with the anonymous name "Jimbo" claim to have hacked the website of the General Election Commission (KPU) kpu.go.id and managed to obtain voter data from the site. A total of 204 NIK voter data, KK, and domicile were sold for IDR 1.2 billion.

They then sold the voter data on the BreachForums website which is usually used to sell the hack results.

"Jimbo offers the data he managed to get for US$ 74,000 or almost equivalent to Rp 1.2 billion," said Chairman of the Cissrec Cyber Security Research Institute, Pratama Persadha in his statement, Tuesday, November 28.

In addition to sharing 500,000 example data that was successfully hacked on one of its posts on the BreachForums website,ruchase also shared several screenshots from the cendptonline.kpu.go.id website to verify the correctness of the data obtained.

In another screenshot shared by fire, it appears that a KPU website page is likely to come from the user's dashboard page.

According to Pratama, with the screenshot, it is very likely that you will be able to get access to login with the KPU role admin from the sidalih.kpu.go.id domain using the phishing method, social engineering or through malware.

"By having access from one of these users, please download voter data and several other data. Cissrec has also previously given an alert to the KPU chairman about vulnerability in the KPU system on June 7, 2023," said Pratama.

In the post on the forum, Goodminton also conveyed that the 252 million data he managed to get were several duplicated data. Afterkowal conducted a screening, there were 204,807,203 unique data and this number is almost the same as the number of voters in the KPU DPT, which amounted to 204,807,222 voters from 514 regencies/cities in Indonesia and 128 representative countries.

The data obtained by fire has some quite important personal data, such as a population identification number (NIK), family card number (KK), ID card number (containing passport number for voters who are abroad), full name, gender, date of birth, place of birth, marriage status, complete address, RT, RW, kelurahan, sub-district and district codification as well as TPS codification.

Pratama mengungkapkan, tim Cissrec juga sudah mencoba melakukan verifikasi data sample yang diberikan secara random melalui website cekdpt, dan data yang diluarkan oleh website cekdpt sama dengan data sample yang dibagikan oleh peretas televisi, termasuk nomor TPS dimana pekor terdaftar.

"Jimbo offers the data he managed to get for US$74000 or almost equivalent to Rp. 1.2 billion," he said.

In another screenshot shared by fire, it appears that a KPU website that may come from the user's dashboard page.

According to Pratama, with the screenshot, it is very likely that you will be able to get access to login with the KPU role admin from the sidalih.kpu.go.id domain using the phishing method, social engineering or through malware.

"By having access from one of these users, please download voter data and several other data. Cissrec has also previously given an alert to the KPU chairman about vulnerability in the KPU system on June 7, 2023," said Pratama.

Previously, in 2022 Bjorka hackers also claimed to get 105 million voter data from the KPU website.