An individual purports to have gained unauthorized access to the sensitive user data of CPNS (List of Government Personnel Numbers), stirring concerns regarding potential breaches of privacy. According to the threat actor’s assertions, they have obtained a vast repository of data encompassing over 400,000 entries.
Among the compromised information are comprehensive details such as full names, email addresses, phone numbers, NIK (Indonesian ID numbers), residential addresses, and additional personal data.
Furthermore, the actor claims to offer API tools for sale, purportedly to check NIP / NRP / NRK data, along with others to open an identity from the Indonesian government employment number.