The Ministry of Technology said an investigation was called into the cyber-attack that transpired on the 26th of August 2023.
Issuing a statement the Ministry said the Information and Communication Technology Agency (ICTA) and the Sri Lanka Computer Emergency Readiness Team (SLCERT) have been entrusted with the task of uncovering the details of this security breach.
The statement added that the cyber-attack, which targeted email systems under the gov.lk' domain, resulted in substantial data loss and a disruption of communications within various state offices.
It stated that the ICTA disclosed that this incident was a significant ransomware attack that took place on the 26th of August, affecting multiple government institutions.
In response to this incident, State Minister of Technology Kanaka Herath has called for the preparation of a comprehensive report to be submitted within a strict timeframe of two weeks.
This report is expected to encompass the following critical details:
Impacted Emails: A thorough account of all email accounts affected by the cyber-attack, shedding light on the extent of the breach and its ramifications for intra-governmental communication.
Government Data Loss: An assessment of the extent of data loss incurred by government agencies as a result of the attack, with a focus on understanding the potential consequences for national security and public services.
Value of Data Loss: An estimation of the financial value associated with the data loss, considering costs related to data recovery, cyber security enhancements and the impact on government operations.
Preventative Measures: A comprehensive overview of the actions already taken to prevent future cyber-attacks of a similar nature.
The statement added that as the investigation unfolds, the Ministry remains steadfast in its mission to secure the nation's digital landscape, ensuring that the IT industry can continue its vital role in driving economic growth and innovation, free from the threat of cyber-attacks.