A dangerous cyber fraud network posing as SriLankan Airlines is tricking users into installing malicious apps that silently steal banking data, bypass security systems, and empty accounts without warning.
Sri Lankan authorities have issued an urgent cybercrime alert following the discovery of a sophisticated financial scam in which fraudsters are impersonating SriLankan Airlines to target unsuspecting victims. This emerging banking fraud scheme highlights serious concerns around mobile security, phishing attacks, and digital financial safety.
According to police investigations, the scammers approach individuals through WhatsApp messages, posing as representatives of the national carrier. Victims are then lured with fake airline promotions, discounted tickets, or exclusive travel offers, creating a sense of urgency and trust. These deceptive tactics are part of a broader cyber fraud strategy designed to manipulate users into taking immediate action without verifying authenticity.
Authorities revealed that victims are instructed to download a mobile application named Sri Lankan.apk from suspicious websites. This file is not an official application but a malicious APK designed to infiltrate smartphones. Once installed, it functions as a banking trojan, giving hackers unauthorized remote access to the device and its sensitive data.
With this level of access, cybercriminals can monitor communications, intercept one time passwords, and override key security features such as fingerprint authentication and facial recognition systems. This allows them to execute unauthorized bank transactions and transfer funds to third party accounts, often without the victim realizing what is happening until it is too late.
SriLankan Airlines has firmly denied any involvement in such communications and clarified that it does not contact customers via WhatsApp for ticketing, promotions, or any financial transactions. The airline also confirmed that it never requests users to download third party applications outside of official app stores, emphasizing that all legitimate offers are published only through its official website and verified platforms.
The airline has urged the public to exercise extreme caution when receiving unsolicited messages or downloading unknown applications. Cybersecurity experts stress that APK files from unverified sources are one of the most common entry points for malware, especially in mobile banking fraud cases.
Law enforcement authorities have also called on the public to remain vigilant and report any suspicious activity immediately. Victims or potential targets are advised to contact the nearest police station or the cybercrime division without delay, as early reporting can help prevent further financial losses and assist in tracking down these cybercriminal networks.
This incident serves as a stark reminder of the growing threat of digital scams in Sri Lanka, particularly those targeting banking systems and personal devices. As cyber threats evolve, both institutions and individuals must adopt stronger cybersecurity practices to safeguard financial information and prevent fraud.
