Sri Lanka's Treasury Hack: $2.5 Million Cyber Heist Exposes Vulnerabilities
Severity: High (Score: 68.0)
Sources: Sundaytimes.Lk, Themorning.Lk
Summary
In April 2026, Sri Lanka's Finance Ministry reported a cyber breach that resulted in the theft of $2.5 million intended for foreign debt repayment. The hackers exploited vulnerabilities in the Ministry's External Resources Department's computer systems, diverting funds to an unknown third party. This incident is part of a broader scrutiny of Sri Lanka's digital infrastructure, which has been criticized for its weaknesses. The government has initiated investigations, including complaints to law enforcement and disciplinary actions against several officials. The breach has raised alarms about the state’s cybersecurity readiness amid ongoing digitization efforts. Additionally, a second incident involving the alleged sale of data from the Ministry of Public Administration on the dark web has compounded concerns about institutional capacity. The Treasury's internal inquiry and coordination with international partners, including the Australian government, are ongoing. Key Points: • A cyber breach led to the theft of $2.5 million from Sri Lanka's Treasury. • The attack exploited vulnerabilities in the Ministry of Finance's computer systems. • Ongoing investigations involve multiple law enforcement agencies and international coordination.
Key Entities
- Data Breach (attack_type)
- Phishing (attack_type)
- Australian Export Finance Agency (company)
- Australian High Commission (company)
- Australian High Commission In Colombo (company)
- External Resources Department (company)
- Finance Ministry (company)
- Australia (country)
- France (country)
- India (country)
- Sri Lanka (country)
- CWE-200 - Exposure of Sensitive Information (cwe)
- hitad.lk (domain)
- Financial (industry)
- Government (industry)
- T1041 - Exfiltration Over C2 Channel (mitre_attack)
- T1566 - Phishing (mitre_attack)
- T1567 - Exfiltration Over Web Service (mitre_attack)
- Lanka Government Cloud (platform)