However, he said the agency is currently studying the possibilities and has coordinated with stakeholders to confirm the rumors. BIN works alongside the National Cyber and Encryption Agency (BSSN), Communication and Informatics Ministry, and other state agencies.
“Until this moment the BIN server is still secure and there is no breach by Chinese hackers as current rumors suggest,” said BIN spokesperson Wawan Purwanto on September 14.
Wawan assures that the state intelligence agency conducts routine system maintenance to assure its sensitive network system remains safe.
The report initially came from privately held cybersecurity firm Recorded Future through its media subsidiary The Record, which stated that the intrusion initially was discovered by its research division against threats, Insikt Group.
“Cyberattacks against BIN is a normal affair considering we constantly work to defend Indonesia’s sovereignty and the interests of the Indonesian population,” he added.
They linked the security threat to Mustang Panda, a Chinese actor known for its cyber-espionage campaigns targeting the Southeast Asian region. Insikt first discovered this in April 2021 when they “detected PlugX malware command and control (C&C) servers, operated by the Mustang Panda group, communicating with hosts inside the networks of the Indonesian government,” their website states.
Read: Cybersecurity Group Suspects Chinese Hackers Compromised Indonesian Govt