The steady rise in cyber complaints reported to the Sri Lanka Computer Emergency Readiness Team (Sri Lanka CERT) in 2025 has highlighted growing gaps in digital safety awareness, particularly as more Sri Lankans depend on social media and online services for their daily activities.
With more than 12,650 complaints recorded so far this year, Sri Lanka CERT says the misuse of social media platforms has become a major driver of cybersecurity incidents. Fake profiles, account takeovers and online financial fraud remain the most frequently reported issues, reflecting how cybercriminals exploit trust within digital communities.
According to Sri Lanka CERT Lead Information Security Engineer Charuka Damunupola, reports of online harassment, abusive content and sexually inappropriate material targeting adults have also increased, raising serious concerns about user safety and mental well-being in online spaces. He added that the spread of false information and deceptive online schemes continues to mislead the public, causing both financial losses and reputational damage.
Experts note that cybercriminals are rapidly adapting, using increasingly sophisticated tactics as digital payments, online shopping and social media interactions continue to expand. Damunupola pointed out that vulnerable groups such as young people, senior citizens and first-time internet users are often targeted due to limited awareness of cybersecurity practices.
He stressed that improving public awareness is critical to reducing cyber risks, urging users to adopt safer online habits. These include limiting the sharing of personal information, verifying the authenticity of messages and links, and strengthening account security through strong passwords and two-factor authentication.
Sri Lanka CERT continues to work closely with law enforcement agencies, internet service providers and other stakeholders to strengthen national cyber resilience and promote responsible digital behaviour. The agency has also encouraged the public to report cyber incidents promptly to enable faster intervention and mitigation.
Members of the public can seek assistance or report cybersecurity incidents by contacting Sri Lanka CERT via the hotline 101 or by emailing report@cert.gov.lk.
