NEWTrain a custom GPT Chatbot on YouTube videosTry Now

INFORMATIKA-CYBER SECURITY

Updated: January 17, 2025

FILAR BERLIANO-XIC- 15

Summary

A group of hackers known as Stormus breached PTKAI's data, targeting both employees and customers using a VPN network and Bitcoin payment method. The Saber attack on January 14, 2023, aimed at extorting a substantial amount, around r.9 billion, from the company. PTKAI launched an investigation into the breach, focusing on potential vulnerabilities like outdated security systems and compromised employee accounts. Mitigation efforts included suspecting the VPN as the point of entry, deleting accessed credentials, and strengthening server security to prevent future cyber threats.

TABLE OF CONTENTS

Cyber Attack on PTKAI
Reasons for Cyber Attack
Investigation and Mitigation

Cyber Attack on PTKAI

A group of hackers named Stormus claimed to have accessed data of employees and customers of PTKAI (PT Kereta Api Indonesia) through a VPN network and Bitcoin payment. The Saber attack occurred on January 14, 2023.

Reasons for Cyber Attack

The cyber attack by hackers or Stormus group aimed to extort a large sum of money, approximately r.9 billion, by leaking data from PTKI. Possible reasons could include outdated security systems and compromised employee accounts.

Investigation and Mitigation

PTKI initiated an investigation into the cyber attack to verify the case's authenticity. Mitigation measures included suspecting the VPN as the entry point, deleting accessed credentials, and enhancing server security to prevent future breaches.

FAQ

Q: What group claimed responsibility for the data breach at PTKAI?

A: A group of hackers named Stormus claimed to have accessed the data of employees and customers of PTKAI.

Q: When did the Saber cyber attack occur?

A: The Saber attack occurred on January 14, 2023.

Q: What was the monetary amount the hackers aimed to extort from PTKAI?

A: The hackers aimed to extort approximately 9 billion Rupiah from PTKAI.

Q: What were some possible reasons for the cyber attack on PTKAI?

A: Possible reasons included outdated security systems and compromised employee accounts.

Q: What measures did PTKAI take to mitigate the cyber attack?

A: PTKAI initiated an investigation, suspected the VPN as the entry point, deleted accessed credentials, and enhanced server security to prevent future breaches.

Get your own AI Agent Today

Thousands of businesses worldwide are using Chaindesk Generative AI platform.
Don't get left behind - start building your own custom AI chatbot now!

Start For Free

Book a Demo