Privacy Ninja

Voter info for millions of Indonesians shared on a hacker forum

KPU header

A threat actor has shared the 2014 voter information for close to 2 million Indonesians on a well-known hacker forum and claims they will release a total of 200 million at a later date.

In the forum post, the threat actor states that the voter records are stored in individual PDF files that they took from the KPU, the general election commission of Indonesia.

Forum post leaking the voter information
Forum post leaking the voter information

Cyber intelligence firm Under the Breach, who shared a sample with BleepingComputer, stated that these PDFs were organized by Indonesia cities.

Data organized by city
Data organized by city

In each folder are PDF files that contain the ID numbers, names, places of birth, dates of birth, and addresses for Indonesian voters, as can be seen below.

Example of PDF containing voter information
Example of PDF containing voter information

The KPU tweeted a statement that the data was not leaked or hacked, but that it was public information to anyone during the 2014 election.

If this data was actually meant to be public, as expressed by Under the Breach, it even more concerning that such sensitive data was released on purpose.

UTB tweet

In a comment to the New York Times, the KPU stated they are looking into the breach but continue to deny that they were hacked.


Leave a Reply

Your email address will not be published. Required fields are marked *


Subscribe to our mailing list to get free tips on Data Protection and Data Privacy updates weekly!

Personal Data Protection


We have assisted numerous companies to prepare proper and accurate reports to PDPC to minimise financial penalties.

Powered by WhatsApp Chat

× How can we help you?