Skip to main content

Cybersecurity Blog

Security intelligence for Indonesian enterprises

FeaturedCompliance

UU PDP vs GDPR: How Indonesia's Data Protection Law Compares

UU PDP vs GDPR side by side: lawful bases, DPO triggers, the 3x24 hour breach notice and who must be told, fines, and what compliance takes for businesses in Indonesia.

N
Naren Krishnan
12 min read · May 30, 2026Read more
Antivirus is not enough anymore. Here is why you need EDR.
Endpoint Security

Antivirus is not enough anymore. Here is why you need EDR.

Antivirus still blocks known malware, but it misses fileless attacks and everything an intruder does after they get in. Here is what EDR adds, from someone who works with endpoints daily.

R
Rizki Pratama5 min · Jun 24
Why the IT penetration testing playbook fails in OT environments
OT Security

Why the IT penetration testing playbook fails in OT environments

From direct experience: why standard IT pentest tools and methods are dangerous in OT/ICS environments, and what a proper OT VAPT approach actually looks like.

M
Mohit Bhansali6 min · Jun 17
How Much Does a Cyber Attack Really Cost an Indonesian Bank?
Cybersecurity

How Much Does a Cyber Attack Really Cost an Indonesian Bank?

The real cost of a cyber attack on an Indonesian bank, from detection and downtime to lost business and UU PDP penalties, with an interactive calculator.

N
Nathan Hioe4 min · Jun 12
Top 5 Ransomware Attacks on Indonesian Companies (and What They Could Have Done)
Threat Intelligence

Top 5 Ransomware Attacks on Indonesian Companies (and What They Could Have Done)

A look at five major ransomware incidents affecting Indonesian organisations, what really happened versus what attackers claimed, and the controls that would have stopped them.

M
Mirna Indriasari5 min · Jun 11
Penetration Testing Requirements for Indonesian Banks Under POJK 11/2022
Compliance

Penetration Testing Requirements for Indonesian Banks Under POJK 11/2022

What POJK 11/2022 and its cyber security circular SEOJK 29/2022 require of Indonesian banks for penetration testing: cadence, scope, reporting, and remediation.

K
Karina Kosasih4 min · Jun 7
DevSecOps in Indonesian Fintech: Meeting OJK Requirements While Moving Fast
DevSecOps

DevSecOps in Indonesian Fintech: Meeting OJK Requirements While Moving Fast

How Indonesian fintechs meet OJK security expectations without slowing releases: which CI/CD security gates to add first, and the audit evidence each produces.

R
Rizki Pratama4 min · Jun 3
ISO 27001 Certification in Indonesia: A Step-by-Step Guide (2026)
Compliance

ISO 27001 Certification in Indonesia: A Step-by-Step Guide (2026)

Step-by-step ISO 27001 certification in Indonesia: the 93 Annex A controls, stage 1 and 2 audits, 6 to 18 month timelines, and realistic cost ranges in rupiah.

T
Tyas Suci4 min · May 30
AI-Powered Cyber Attacks in Indonesia 2026: What CISOs Need to Know
Threat Intelligence

AI-Powered Cyber Attacks in Indonesia 2026: What CISOs Need to Know

A practical look at how AI is being used against Indonesian enterprises in 2026, and the specific controls that matter.

M
Mohit Bhansali10 min · May 3
OJK Cybersecurity Requirements: A Complete Guide for Indonesian Banks
Compliance

OJK Cybersecurity Requirements: A Complete Guide for Indonesian Banks

OJK cybersecurity rules for Indonesian banks: what POJK 11/2022 requires, the 24-hour incident reporting deadline, penalties, and how to build compliance.

A
Alpha Code Team10 min · Apr 16