On Thursday, November 2, 2023, the website of the Ministry of Defense of the Republic of Indonesia (Kemenhan RI) fell victim to a suspected cyberattack that resulted in the theft of 1.64 Terabytes (TB) of data. This information was conveyed by Pratama Dahlian Persadha, a cybersecurity expert who analyzed the impact of the breach on the Kemenhan website. According to Pratama, the hacker responsible for the breach, using the anonymous account "Two2," admitted to successfully gaining access to Kemenhan's website dashboard.

Pratama explained that the hacker subsequently sold their findings through uploads on BreachForums, a platform commonly used for trading in hacked data. "The anonymous account 'Two2' shared several screenshots from the kemhan.go.id website's dashboard, one of which showed that the Kemenhan website had used 1.64 TB out of the total 2 TB storage available," Pratama stated in a press release quoted on Friday, November 3, 2023. According to Pratama, this hacking incident exhibited a notable difference in behavior. Typically, hackers sell data they have successfully stolen and compromised. However, Pratama, who also serves as the Chairman of the Cyber Security Research Institute CISSReC, explained that the hacker "Two2" chose to sell access to the Kemenhan website's dashboard.

Previously, Kemenhan RI confirmed the breach of their website but assured that their sensitive data remained secure. Brigadier General Edwin Adrian Sumantha, Head of Kemenhan's Public Relations Bureau, stated that the compromised data included information such as backup component registrations (komcad) and press releases or PPID. Edwin emphasized that sensitive documents or data were not stored on the kemhan.go.id website. As a precautionary measure, Kemenhan decided to temporarily deactivate their website.

Currently, Kemenhan has deployed the Computer Security Incident Response Team (CSIRT) to investigate the breach by conducting an assessment of data and internet networks within the Kemenhan environment.