Indonesian Cyber and Crypto Agency Site Attacked by Brazilian Hackers

The website of the National Cyber and Crypto Agency (BSSN) was defaced. A team of hackers from Brazil claimed to be behind the attack. The hack is said to be a retaliation for cyber attacks on Brazilian government websites by Indonesian hackers.

The hackers targeted a subdomain url of the agency's main website, www.pusmanas.bssn.go.id. Until Tuesday, 26 October 2021, the particular part of site still cannot be accessed. The main website https://bssn.go.id can be opened and seems to be unaffected. 

The sub domain is said to contain information related to malwares for research purposes.

Experts stated that the hacking of the BSSN website is very concerning and ironic because the agency was formed to detect and prevent all potential cyber attacks on Indonesia's cyber domain. 

The site is said to have been hacked by theMx0nday on Wednesday (20/10/2021), last week.

The defaced website shows a massage from the hackers. (Photo: CISSReC)

"It was written by the defacement actor that this action was carried out to avenge the alleged perpetrator from Indonesia who had hacked the Brazilian state website," said cyber security expert Pratama Persadha on Monday (25/10/2021, quoted from Detik).

National Malware Center

The National Cyber and Crypto Agency (BSSN) confirmed that there had been a hack on its sub-domain, namely www.pusmanas.bssn.go.id. This is the website for the National Malware Center. 

"Yes, that's right, on October 21," said BSSN spokesman, Anton Setyawan, when contacted by detikINET, Monday (25/10/2021).

Anton said that the hacking incident of the BSSN official site is directly handled by the Computer Security Incident Response Team (CSIRT) from BSSN.

"Currently, the handling of the site has been carried out by the BSSN CSIRT Team, because the site contains data regarding malwares repository," said Anton.

The malware repository in question is a site for managing malwares. It is used for research purposes.

"It (the attack) is resolved. So far the indications (the perpetrators) are from Brazil, but we are still investigating again because in this cyberspace anyone can claim," he said.

Based on the results of BSSN monitoring, there are more than 1 billion traffic anomalies or attacks in the period January to September 2021.