A threat actor has claimed responsibility for leaking the personal information of high-ranking Indonesian officials, including the president and his family, on a dark web forum. The alleged data breach, which reportedly occurred in September 2024, exposed detailed personal information about the Ministry of Finance staff, and other cabinet members as well.
According to the threat actor’s post, the compromised data spans approximately 6.6 million records, which have been compressed into a 500 MB file. Once uncompressed, the data size increases to 2 GB and is available in CSV format. The stolen data allegedly includes sensitive information such as names, national identification numbers, tax registration numbers, residential addresses, email addresses, phone numbers, dates of birth, tax office names, regional tax office details, tax status, and more.
The cybercriminal is reportedly selling the database for $10,000 via a private CDN, stating that the dataset includes highly classified information about the officials, which could have serious implications for the country’s government.
