A threat actor claims to have breached the Ministry of Education, Research and Technology (kemdikbud.go.id), an Indonesian government body responsible for national education and research. The actor has put the allegedly stolen data up for sale, suggesting a significant compromise of the ministry’s internal systems and databases.
According to the actor, the breach involves over 20 million records, totaling 1.5 GB of data. The exfiltrated database purportedly contains confidential letters, secret documents, financial records, and employee information. The compromised personal data includes full names, identity numbers, dates of birth, phone numbers, addresses, emails, hashed passwords, and personal photos.
