Sri Lanka said on Tuesday that a payment of about $625,000 (about 199.7 million Sri Lankan rupees) to the U.S. Postal Service has been missing for several weeks, after U.S. officials reported that the payment had failed to arrive, reports local media.
Authorities detected the incident after hackers allegedly tried to divert another payment intended for India.
Australian officials are reportedly aware of irregularities in payments owed to the country, suggesting that the Sri Lankan thefts could be broader than first thought.
The disclosure comes days after Sri Lankan officials said they were probing the theft of $2.5 million by a hacker who had targeted the country’s finance ministry.
Treasury Secretary Harshana Suriyapperuma told reporters at a press conference last week that the hackers diverted the payment from the country’s postal authority “to other bank accounts, instead of the intended recipient.”
These incidents seem to be business email compromise attacks, in which hackers break into email inboxes or other accounting systems to manipulate bank accounts and routing numbers during the process of paying an invoice.
Business email compromise scams are popular with cybercriminals, and recent FBI data has shown such attacks remain one of the top sources of cybercriminal profits, as hackers can steal vast sums of money via a single breach. The FBI says email compromise attacks resulted in billions in dollars of losses last year alone.
News of the successive security lapses has put new pressure on the Sri Lankan government after years of financial difficulties. The country is still recovering from an economic crisis that led to it defaulting on its debt in 2022, and resulted in months of protests that culminated in the ouster of then-president Gotabaya Rajapaksa.
It’s currently unclear if the two thefts are linked. Member of Parliament Nalinda Jayatissa said the government is investigating whether the incidents are connected.
Topics
business email compromise, cyberattack, cybersecurity, Security, sri lankaWhen you purchase through links in our articles, we may earn a small commission. This doesn’t affect our editorial independence.
Zack Whittaker
Security Editor
Zack Whittaker is the security editor at TechCrunch. He also authors the weekly cybersecurity newsletter, this week in security.
He can be reached via encrypted message at zackwhittaker.1337 on Signal. You can also contact him by email, or to verify outreach, at zack.whittaker@techcrunch.com.
View Bio
StrictlyVC kicks off the year in SF. Register now for unfiltered fireside chats and VC insights with leaders from Uber, Replit, Eclipse, and more. Plus, high-value connections that actually move the needle. Tickets are limited.
-
OpenAI ends Microsoft legal peril over its $50B Amazon deal
- Julie Bort
-
Two college kids raise a $5.1 million pre-seed to build an AI social network in iMessage
- Dominic-Madori Davis
-
Meta’s loss is Thinking Machines’ gain
- Connie Loizos
-
Google to invest up to $40B in Anthropic in cash and compute
- Rebecca Bellan
-
OpenAI releases GPT-5.5, bringing company one step closer to an AI ‘super app’
- Lucas Ropek
-
Microsoft offers buyout for up to 7% of US employees
- Amanda Silberling
-
Surveillance vendors caught abusing access to telcos to track people’s phone locations, researchers say
- Lorenzo Franceschi-Bicchierai