Sri Lanka is investigating a suspected cyberattack after a payment of about $625,000 meant for the United States Postal Service went missing for several weeks.
Officials said the issue came to light after U.S. authorities reported that the payment had not been received. Around the same time, hackers allegedly attempted to divert another payment intended for India, raising concerns about a wider pattern of attacks.
Authorities in Australia have also flagged irregularities in payments owed to them, suggesting the potential scope of the issue may extend beyond a single incident.
The case follows another recent breach where hackers reportedly stole $2.5 million by targeting Sri Lanka’s finance ministry. Treasury Secretary Harshana Suriyapperuma said attackers redirected funds from the country’s postal authority into unauthorized bank accounts instead of the intended recipient.
Early indications suggest these incidents may be examples of business email compromise, a type of cyberattack where hackers gain access to email or financial systems and manipulate payment details to reroute funds.
According to the Federal Bureau of Investigation, such scams remain one of the most profitable forms of cybercrime, causing billions of dollars in losses globally each year.
The latest developments add pressure on Sri Lanka’s government as it continues to recover from a severe economic crisis, including a 2022 debt default that led to widespread protests and the resignation of former president Gotabaya Rajapaksa.
If this article helped you, please consider supporting our work. Every small contribution keeps Abijita.com independent and running.
Authorities are still investigating whether the recent thefts are connected. Lawmaker Nalinda Jayatissa said efforts are underway to determine if the incidents are part of a coordinated campaign.
