Jakarta, INTI - Indosat Business has released a whitepaper titled “A Business-Centric Framework for Enterprise Cyber-Resilience”. In the report, it is explained that Indonesia has become a high-value target for global cybercriminals.
The report explains that the digital economy boom has made Indonesia increasingly aggressive in adopting digital technology. However, at the same time, the country’s cybersecurity preparedness is deemed unbalanced with the pace of digital transformation.
"Uneven security maturity has made the country a high-value target for global cybercriminals," the report stated.
Ransomware Attacks are the Most Often
Ransomware is the most dominant cyber threat across sectors in Indonesia. The ransomware attack on the National Data Center (PDN) in June 2024 is one of the examples. This cyberattack impacted more than 200 government services nationwide. In the same year, another cyberattack also occurred on the Directorate General of Taxes system, where millions of employees' data were leaked.
Currently, cybercrime in Indonesia is no longer random. Hackers are said to be deliberately targeting large-scale data storage centers that hold critical information.
"Threat actors are deliberately targeting centralized repositories containing high-value citizen and institutional data," the report stated.
Cybercriminal activity is also said to be increasingly organized and economically driven. The practice of selling databases and initial access listings is reportedly one of the most actively traded illegal assets related to Indonesia.
As a result, sectors with high data intensity are becoming primary targets. The information services industry is most frequently targeted, while phishing attacks have become more specific and targeted at the telecommunications, ICT service providers, energy, and utilities sectors.
Economic Losses and Low Readiness
The economic losses caused by these attacks are substantial. The average cost of a major data breach in Indonesia is estimated at Rp15 billion. This figure increases in high-value sectors, reaching around Rp75 billion in technology, media, and telecommunications, and Rp78 billion in financial services.
The situation is worsened by low corporate readiness for cyber threats. Cisco noted in its 2025 report that Indonesia's cybersecurity readiness index only reached 11%.
Meanwhile, the National Cyber and Crypto Agency (BSSN) reported that more than 330 million anomalous traffic incidents were monitored throughout 2024. Of these, more than 500,000 were related to ransomware activity.
Conclusion
Indonesia is considered a high-value target for global cybercriminals because its rapid digital economic growth is not matched by adequate cybersecurity preparedness. Ransomware attacks are the most common. Cybercriminals deliberately targets large data centers that store critical information about citizens and institutions. The average loss from data breaches in Indonesia is estimated at IDR 15 billion, with higher losses in the technology and financial sectors. Meanwhile, Indonesia's cybersecurity preparedness remains low, with an index of only 11%.
Read more: Encrypted RCS is Available in Beta for iOS 26.5 iPhone Users