Learning from PDN Hack: Gema Sasmita Urges Indonesia to Adopt Advanced Cybersecurity Regulations

Jakarta, July 8, 2024 - Gema Sasmita, CEO of PT Sydeco, a leading cybersecurity firm, responded to the recent data breach at the National Data Center (PDN), emphasizing the need for robust data protection and cybersecurity measures for both public and private institutions in Indonesia. "The PDN incident serves as a stark reminder of the urgency to strengthen our cybersecurity systems. Data protection is not solely the government's responsibility, but a shared one involving private companies and the public," Gema stated.

Indonesia's current cybersecurity landscape lags behind developed nations. Singapore allocates SGD 1 billion (approximately Rp 11 trillion) annually, Japan JPY 1 trillion (around Rp 105 trillion), and Germany EUR 2 billion (around Rp 33 trillion) for cybersecurity. In contrast, Indonesia's budget is a mere Rp 2 trillion. Gema criticized the Ministry of Communication and Informatics (Kominfo) for its handling of cybersecurity issues, urging more proactive measures in crafting regulations and educating the public.

Gema highlighted the need to strengthen cybersecurity regulations in Indonesia, comparing them to those in Singapore (Cybersecurity Act 2018), the United States (Cybersecurity Information Sharing Act 2015, National Cybersecurity Protection Act 2014), the European Union (General Data Protection Regulation 2016), and Germany (IT Security Act 2015). These regulations grant broad authority to supervisory bodies, mandate strict incident reporting, comprehensively protect personal data, and impose severe penalties for cybercrimes. Meanwhile, Indonesia relies on the Electronic Information and Transactions Law (UU ITE) 2008, deemed inadequate, and the Personal Data Protection Law (UU PDP), which only recently became effective in October 2024.

Gema stressed the importance of learning from developed nations in designing comprehensive and effective cybersecurity laws. "Strong regulations, an independent supervisory body, and close cooperation between the government, private sector, and the public are key to strengthening national cybersecurity," he emphasized. PT Sydeco, through its flagship products like Archangel, offers comprehensive cybersecurity solutions to protect data and systems from various threats. Archangel boasts advanced features such as AI-based threat detection, ransomware protection, and real-time security monitoring.

Regarding the PDN hack by the "Brain Cipher" group, Gema highlighted the role of technologies like the OSINT Intelligence Platform "StealthMole," developed by Stealthmole Intelligence Pte Ltd, in identifying and tracking cybercriminals. StealthMole can gather and analyze data from open sources like social media, online forums, and the dark web to identify perpetrators, aiding law enforcement in investigations and prosecution.

"This is a matter of national security, not a game. We must thoroughly prepare to face future national cybersecurity challenges, not just talk about it all the time," Gema concluded.