Cyber Incident Victim: රී ලංකා පොලීසිය / இலங்கை காவல்
Date:
Apr 2022
Location:
Sri Lanka
Summary
The Sri Lanka Police website experienced a cyber attack that resulted in its temporary unavailability. Authorities confirmed the incident caused the site to be inaccessible, though no further technical details or additional impacts were disclosed in initial reports. The disruption highlighted vulnerabilities in the organization's online infrastructure during the event.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 1 motive | 1 technique |
| Threat Actors | Type | Location |
|---|---|---|
| 0 actors | Available to members | Available to members |
Description
On April 17, 2022, the official website of the Sri Lanka Police (police.lk) became inaccessible due to a confirmed cyber attack. Police sources publicly attributed the website's downtime to malicious activity targeting their online infrastructure. The incident was reported by News 1st at approximately 4:20 PM local time, indicating the attack occurred on or before that timestamp. No technical details regarding the attack vector—such as DDoS, defacement, or data compromise—were disclosed by authorities. The website remained non-operational at the time of reporting, directly impairing public access to official police information and services typically hosted on the domain.
No immediate statements from the police elaborated on the attack's origin, duration, or full operational impact beyond the confirmed outage. The article did not reference any claimed responsibility by threat actors or specify whether secondary systems beyond the public-facing website were affected. Authorities did not describe containment measures, restoration timelines, or investigative responses within the available reporting window. The incident represented a visible disruption to a critical government digital service amid a period of heightened social unrest in Sri Lanka. Public confirmation of the attack by police sources established it as a deliberate cybersecurity incident rather than routine technical failure.