:

SRI LANKA INVESTIGATES $2.5M FINANCE MINISTRY HACK

SECURITY DESK1 MIN READ
THU, APR 23, 2026

■ AI-SUMMARIZED FROM 1 SOURCE ▸ TIMELINE

Sri Lanka's government is investigating a cyberattack that resulted in the theft of $2.5 million from the Finance Ministry's systems. Treasury Secretary Harshana Suriyapperuma confirmed the breach on Thursday.

The hack represents a significant security incident for Sri Lanka's financial infrastructure. Attackers gained unauthorized access to the Finance Ministry's computer systems and successfully extracted the funds. Treasury Secretary Suriyapperuma disclosed the breach, indicating that authorities have launched a formal investigation into the incident. Details regarding the attack method, timeline, and the specific vulnerabilities exploited remain under investigation. The incident highlights growing cybersecurity risks facing government institutions in the region. Sri Lanka joins numerous countries grappling with sophisticated cyber threats targeting public sector financial systems. No additional details about recovery efforts or potential attribution have been released. The investigation is ongoing.

■ SOURCES

Bloomberg Tech

■ SUMMARY WRITTEN BY AI FROM THE LINKS ABOVE

■ MORE FROM THE SECURITY DESK

Partnered Health, one of Australia's largest healthcare providers, has disclosed a cyber-attack affecting 21 clinics across Sydney, Melbourne, and Canberra. Personal information and medical records were compromised in the breach.

1H AGOSecurity Desk

Security firm Intruder has developed an AI-powered system that automatically identifies previously unknown software vulnerabilities by combining code analysis with large language models. The tool already discovered and exploited a WordPress plugin zero-day.

1H AGOAI Desk

U.S. federal prosecutors have unsealed charges against three Russian nationals accused of operating a bulletproof hosting service that supported ransomware gangs responsible for over $62 million in damages worldwide.

7H AGOIndustry Desk

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) warned that attackers are actively exploiting three vulnerabilities in Internet-exposed on-premises SharePoint Server instances. Organizations running affected versions must patch immediately.

7H AGOSecurity Desk

■ SUBSCRIBE TO THE DAILY BRIEF

ONE EMAIL, 5 STORIES, 06:00 UTC. UNSUBSCRIBE ANYTIME.