When there is stolen or hacked data, this means that there is a neglect from PSEs or data managers
Jakarta (ANTARA) - Penetration test became one of the crucial activities for Electronic System Providers (PSEs) so as to make their services' security more optimal, the Communication and Informatics Ministry stated through a podcast on Saturday.

"We provide recommendations to them to routinely carry out penetration test as a way to test the reliability of the system from PSEs," Director General of Public Information and Communication at the ministry Usman Kansong remarked.

In the technological company IBM's blog, penetration test is a security test intended for a computer system to find security vulnerability. The test launches mock attacks that usually occur in cyberspace.

In detail, penetration test is usually undertaken by security professionals, who are experts in the art of ethical hacking, so that any discovered vulnerabilities can be fixed immediately.

The simulated attack is not only done on applications but also the system network and even other assets.

According to Kansong, from the 98 data leak cases that the ministry handled since 2019, it was found that sometimes electronic system providers rarely tested the reliability of their security system.

In fact, other findings show that the providers do not update the technology that they use, which increases the vulnerability of their security system.

"When there is stolen or hacked data, this means that there is a neglect from PSEs or data managers. Often, we found that it is because they do not conduct routine penetration test or even update their technologies. Most of them are because of that," Kansong explained.

In response to several alleged data leak cases in recent times, the ministry is still carrying out the mandate from Government Regulation No. 71 of 2019 on Electronic System and Transaction Organizing, he noted.

The ministry also awaits the implementation of Law No. 27 of 2022 on Personal Data Protection in 2024, he stated.

If electronic system providers that experienced data leak based on the report are found, then the ministry will impose administrative penalty based on the applicable provisions.

Moreover, the ministry reminded other PSEs to continue to improve the reliability of their security and the general public to not share their personal data easily so as to not become a victim of data theft.

Related news: Immigration: Alleged passport data leak occurred in January 2022
Related news: No trace of population data leak: Ministry
Related news: Government to investigate alleged population data leak


Translator: Livia K, Fadhli Ruhman
Editor: Sri Haryati
Copyright © ANTARA 2023