Cybersecurity expert and Chairman of the Cyber Security Research Institute (CISSReC), Pratama Persadha, shed light on the recent cyber incidents involving Indodax and emphasized that the incidents in 2022 are distinct from one another. The alleged data leak that occurred in 2022 was not a result of a direct cyber attack on the Indodax system, but rather a consequence of malware known as Stealer info targeting devices belonging to Indodax customers.
In contrast, the most recent incident involved hackers breaching the signature engine of the Indodax system, allowing them to generate a key that appeared legitimate for conducting transactions. Despite Indodax reassuring its users that their assets are secure, Pratama expressed concerns that the stolen crypto assets might have been transferred to other wallets or exchanged for different types of cryptocurrencies. Indodax is currently working to recover the assets utilizing their reserve funds.
During a recent interview with Voice of Indonesia (VOI) on Friday, September 13, Pratama explained that Indodax is likely conducting audits and forensic investigations to address the recent breach. He emphasized the importance of leveraging early threat detection mechanisms and taking prompt action in response to hacking incidents to mitigate potential losses.
Pratama called upon companies to remain vigilant against suspicious transactions, ensure rigorous testing and auditing of program codes by security firms, temporarily halt protocols in the event of a breach, employ layered security strategies, utilize Cold Storage for offline storage of crypto assets, implement multifactor authentication, provide employee training, conduct regular updates, and schedule periodic security audits.
The Indodax hacking incident serves as a stark reminder that security is an ongoing process necessitating continual attention and improvement. Pratama underscored that assumptions about safety in the present may not hold true in the future, emphasizing the need for sustained vigilance in cybersecurity practices.
In conclusion, the series of cyber incidents targeting Indodax highlight the evolving nature of cybersecurity threats and the imperative for companies to bolster their defenses proactively. Pratama’s expertise underscores the need for a comprehensive and dynamic approach to cybersecurity to safeguard against potential breaches and mitigate risks effectively.