Beyond Access Control: Rethinking Identity Management to Avoid Ransomware Attacks on Governments
摘要
Governments are increasingly targeted by ransomware attacks, often exploiting weaknesses in Identity and Access Management (IAM) systems. This study examines how IAM vulnerabilities allow ransomware to infiltrate government networks and propose key enhancements to mitigate these risks. Using a case study of Indonesia’s 2024 ransomware attack, along with a comparative analysis of IAM deployments, this research identifies three major security gaps: (1) weak credential management, (2) ineffective access controls, and (3) lack of anomaly detection. To address these challenges, we recommend Zero Trust architecture, machine learning-driven anomaly detection, and fine-grained access control to strengthen IAM defences. Our findings provide actionable insights for government cybersecurity teams and policymakers to improve IAM frameworks, ensuring resilient digital infrastructure against ransomware threats.