700 Thousand Employee Data Leaked, Ministry Of Defense Calls Old Data And Has Conducted Investigations

Leakage of data from the Indonesian Ministry of Defense (photo: account X @H4ckmanac)

As many as 700,000 personal data of employees from the Ministry of Defense of the Republic of Indonesia (KEMHAN RI) were leaked and have been disseminated illegally on dark websites or illegal sites.

Found for the first time by a cybersecurity observer account on X @H4ckmanac, this alleged data hack was carried out by a cybercriminal who used the initials "DigitalGhost".

"A threat actor alias "DigitalGhost" claims to have leaked a database containing personal data of 700,000 individuals from the Ministry of Defense of the Republic of Indonesia (KEMHAN RI)," the account wrote.

🚨Data Breach Alert‼️

🇮🇩Indonesia - Ministry of Defense (Kementerian Pertahanan Republik Indonesia, KEMHAN RI)

A threat actor using the alias "DigitalGhost" has claimed to have leaked a database containing personal data of 700,000 individuals from the Indonesian Ministry of… pic.twitter.com/rEdLqPk42N

— Hackmanac (@H4ckmanac) July 9, 2025

'Breach Alert Data!!'

Badminton Indonesia - Ministry of Defense (Ministry of Defense of the Republic of Indonesia, KEMHAN RI)

A threat actor using the alias "DigitalGhost" has claimed to have leaked a database of personal data of 700,000 individuals from the Indonesian Ministry of... pic.twitter.com/redLqPk42N

The data exposed includes sensitive information such as the Population Identification Number (NIK), participant number, full name, examination date, session, examination location, position formation, and placement unit related to the selection process for prospective civil servants (CPNS) within the Ministry of Defense.

Responding to the news, Head of the Defense Information Bureau of the Ministry of Defense (Kemenhan) Brigadier General Frega Ferdinand Wenas said that the data is data from the Ministry of Defense's CPNS in 2021, especially regarding the results of processing the values of the Basic Competency Selection by the State Civil Service Agency (BKN), and is public.

"The data is actually public and is an attachment to a letter from BKN that was uploaded on the Ministry of Defense website as a form of transparency at that time," he said in a statement received.

However, Frega emphasized that the data uploaded had been revealed by the Ministry of Defense's Personnel Bureau, in order to prevent potential abuse and maintain information order.

He also admitted that the website that was hacked was an old internal website of the Public Relations Bureau whose security application ended at the beginning of last year, not the main portal of the Ministry of Defense.

"As an anticipatory effort, the Ministry of Defense has conducted internal audits and strengthened security systems, and coordinated with cybersecurity work units and appealed to the public to remain calm and not be easily provoked," he said.