[South East Asia] Indonesia investigates breach of data on more than two million voters

Indonesia is investigating the release of 2.3 million voters’ private information on a hacker website along with a threat to release of the data of about 200 million people, the election commission said on Friday.
The electoral data from the world’s fourth most-populous nation was posted anonymously on the hacking forum ‘raidforums’ on Wednesday and analysts said it could be used for identity theft and fraud.
The data breach, which included names, home addresses and national identification numbers, appeared to be from the 2014 election voter list, according to the General Election Commission.
The General Election Commission (KPU) confirmed the authenticity of the data, and said it was working to determine the source. It confirmed some of the data dated back to 2013.
Agency commissioner Viryan Azis denied that the leak had originated from the commission’s servers, saying the same data had been shared with political parties and presidential candidates, in line with the law.
Whoever posted the data on the forum did not identify themselves, saying only, “I got more than 200 million Indonesians’ citizenship data that I will share…soon”.
More than 192 million people were eligible to vote in national and regional elections last year.
The release followed investigations by e-commerce platform Tokopedia into accusations that the data of 91 million users leaked online in early May.
Indonesian civil society groups said it exposed serious vulnerabilities.
“The safety of voter data is uncertain,” Titi Anggraini, director of the Association for Elections and Democracy. “We are not safe as citizens.”