The NDF MP raised serious concerns in Parliament regarding the increasing vulnerability of the country’s digital infrastructure, warning that recent cyber incidents and attempted intrusions involving key State institutions had exposed weaknesses in national cyber resilience and institutional preparedness.
Among the institutions reportedly targeted or affected were the Finance Ministry, banking sector entities, the Registrar of Persons, Registrar of Companies, the Central Bank of Sri Lanka, Road Development Authority and the General Post Office. Karunanayake said these incidents had triggered widespread public concern over national security, operational stability and public confidence in the country’s digital systems.
He further questioned whether several other critical institutions — including the Inland Revenue Department, Sri Lanka Customs, Excise Department, Department of Immigration and Emigration, Ceylon Electricity Board, Ceylon Petroleum Corporation, Bank of Ceylon, People’s Bank, National Savings Bank and SriLankan Airlines were adequately protected against cyber threats, financial fraud, data theft and potential operational disruption.
Karunanayake warned that despite repeated Government assurances and ongoing efforts toward digital transformation, e-governance, digital identity systems and fintech expansion, many institutions appeared dangerously exposed due to outdated technology, weak cyber safeguards, inadequate monitoring mechanisms, limited staff preparedness and a lack of accountability.
He stressed that cyber security should now be treated as a matter of national security and urged the Government to introduce stronger protections, modern cyber defence systems and comprehensive institutional reforms to prevent future cyber warfare and organised cybercrime targeting Sri Lanka.
