Cybersecurity and Digital Transformation: Finding the Right Balance for National Security in Sri Lanka

Introduction

In the modern era, digital transformation is at the heart of economic and social development. As Sri Lanka embraces new technologies, it is also increasingly vulnerable to cyber threats. Striking a balance between rapid digitalization and robust cybersecurity measures is essential to safeguard national security, protect critical infrastructure, and ensure public trust in digital services.

The Rise of Digital Transformation in Sri Lanka

Sri Lanka has made significant progress in digital transformation with initiatives such as the “Digital Sri Lanka” framework and the National Digital Strategy. The widespread use of cloud computing, artificial intelligence, machine learning, blockchain, and Internet of Things (IoT) technologies is facilitating innovation across various sectors including finance, healthcare, and governance. However, with increasing digital dependency, there is an urgent need for robust cybersecurity mechanisms.

Cybersecurity Challenges in Sri Lanka

As digital transformation progresses, Sri Lanka faces numerous cybersecurity challenges, including:

Rising cyber threats - Cyber attacks targeting government institutions, financial organizations, media outlets, and businesses are on the rise. Phishing, ransomware, and data breaches are becoming more common, posing a significant threat to national security.

Lack of cybersecurity awareness - Many organizations and individuals still lack the knowledge and training needed to identify and mitigate cyber threats. This knowledge gap increases Sri Lanka’s vulnerability to attacks. The public sector in particular needs to undergo a new transformation.

Weak regulatory framework - Although Sri Lanka has enacted cybersecurity laws such as the Computer Crimes Act and the Data Protection Act, implementation remains weak. A comprehensive cybersecurity strategy is needed to effectively address emerging threats. This is currently being updated and is not a major issue.

Limited Skilled Workforce - The shortage of cybersecurity professionals is hindering the country's ability to defend against modern cyberattacks. It is critical to encourage more students to pursue careers in cybersecurity and invest in skills development programs. New programs should be implemented to train this starting at the school level.

Notable Cyberattacks in Sri Lanka

Several high-profile cyberattacks have occurred in Sri Lanka, highlighting the urgent need for stronger cybersecurity measures:

1. LTTE Cyberattack (1998, 2009) – The Liberation Tigers of Tamil Eelam (LTTE) executed one of the first terrorist cyberattacks, sending 800 emails to Sri Lankan embassies in 1998. In 2009, they attacked the Sri Lankan Army website, attempting to disrupt communication and influence national stability.
2. Ministry of Tourism Cyberattack (2018) – A cyberattack targeted the Ministry of Tourism Development and Christian Religious Affairs, compromising sensitive government data.
3. Presidential Website Hacking (2016) – The official website of President Maithripala Sirisena was hacked by a group identifying themselves as "Sri Lankan Youth."
4. ISIS Propaganda (Year Unknown) – The terrorist organization ISIS spread hate speech through Sri Lankan cyberspace, exploiting digital platforms to influence individuals.
5. Temple of the Tooth Relic Website Hack (2020) – Cybercriminals targeted this culturally significant website, compromising its integrity.
6. Ministry of Defense and Education Data Breach (2022) – The Kelvin Cyber Group illegally sold access to government databases, endangering national security.
7. PayHere Online Payment Gateway Attack (2022) – A cyberattack on the PayHere payment system caused significant financial losses.
8. Sri Lanka Police Network Attack (2022) – Cybercriminals infiltrated the police network, raising concerns about law enforcement data security.
9. Anonymous Attacks (2022) – The hacktivist group Anonymous targeted the Sri Lanka Electricity Board, the Immigration Department, and the Sri Lanka Scholar website, exposing students personal information.
10. Lanka Government Cloud Ransomware Attack (2023) – A ransomware attack led to the loss of critical government data, including the compromise of 5,000 emails.
11. Sri Lanka Bureau of Foreign Employment (SLBFE) Data Leak (2023) – Hackers released confidential details of Sri Lankan workers abroad.
12. Social Media-Related Cybercrimes – Financial scams and love scams have proliferated on social media platforms, resulting in significant financial and psychological harm.
13. Sarasavi Publishers Website Hack – Cybercriminals inserted pornography into the Sarasavi Publishers website, tarnishing its reputation.
14. Bandaranaike International Airport Email System Phishing – Hackers exploited the airport’s email system to send fraudulent messages.
15. Hijacking of Official Twitter Accounts (2023) – The official Twitter accounts of Sampath Bank and Sri Lanka Airport were taken over by cybercriminals.
16. Hacking of YouTube Channels (2023) – Malicious actors compromised the YouTube accounts of Sirasa TV and Derana TV.
17. Sri Lanka Telecom and MAS Holdings Ransomware Attacks – The critical IT infrastructure of these major organizations was held hostage by ransomware, affecting operations.
18. Sri Lanka Parliament Website Attack (2024) – Hackers defaced the official website of the Sri Lankan Parliament, disrupting access to legislative information.
19. Major Banking Sector Cyberattack (2024) – Several leading banks in Sri Lanka faced a coordinated cyberattack, affecting online banking services and financial transactions.
20. Educational Institutions Data Leak (2024) – A large-scale data breach exposed student and faculty records from multiple universities, raising concerns about data security in the education sector.
21. Government Email System Compromise (2024) – Cybercriminals gained unauthorized access to Sri Lanka’s government email network, leading to potential leaks of sensitive communication.

Achieving the Right Balance Between Digital Transformation and Cybersecurity

New cybersecurity institutions need to be established in Sri Lanka to strengthen national defense against cyber threats. (There are institutions like SLCert and Tech CERT in Sri Lanka. I think it would be good to have more new Companies.) These institutions must work proactively to develop innovative security strategies, improve response mechanisms, and foster a culture of cybersecurity resilience. This marks the beginning of a new era in cybersecurity, paving the way for stronger digital defenses in the coming years.

To ensure national security while advancing digital transformation, Sri Lanka must adopt a balanced approach that includes the following strategies:

• Strengthening Cybersecurity Infrastructure

Investing in AI-driven threat detection, blockchain security, and multi-factor authentication systems.

Establishing National Cyber Security Operations Centers to monitor and respond to cyber threats in real-time. (Sri Lanka has an institution called "NCSOC" - CERT)

• Enhancing Cybersecurity Policies and Regulations

Update and enforce cybersecurity laws to comply with international standards.

Implement a national cybersecurity framework with clear guidelines on data security, incident response, and cyber resilience.

• Promoting Public-Private Partnerships

Encouraging collaboration between the government, private sector, and international cybersecurity organizations.

Facilitating knowledge sharing, joint threat intelligence, and coordinated response efforts.

• Increase cybersecurity awareness and education

Introduce cybersecurity programs in schools, universities, and workplaces. Currently, Community of Cyber Security in Horizon - C2SH has initiated various programs connecting schools and universities.

Expand specialized cybersecurity courses to develop a skilled workforce.

• Strengthening Critical Infrastructure Protection

Implementing strong cybersecurity measures for the banking, telecommunications, and energy sectors.

Conducting regular security audits, penetration tests, and threat intelligence sharing to mitigate cyber threats.

As government institutions are currently going digital, we must be prepared for these security measures right now.

Conclusion

As Sri Lanka continues its digital transformation journey, prioritizing cybersecurity is non-negotiable. Without adequate protection, digital advancements could become a double-edged sword, exposing the nation to cyber risks that threaten economic stability and national security. By implementing strong cybersecurity policies, fostering collaborations, and investing in cybersecurity education, Sri Lanka can achieve a secure digital future while embracing technological innovation. The key to success lies in finding the right balance between digital progress and robust cybersecurity measures. It should also be noted that Sri Lanka CERT|CC has taken on a great responsibility in this regard and has contributed significantly to the country's development and cybersecurity.

References -

https://www.defence.lk/upload/doc/Thusitha_Bulathgama_Cyber_Terrorism_an_Emerging_Threat_to.pdf

https://readme.lk/hacking-sri-lanka-hall-of-misery/