How many fraudulent messages were sent in the NWSDB attack?

Approximately 10,000 fraudulent messages were sent to customers' mobile phones during the cyberattack on NWSDB's SMS system.

What ransom amount did the attackers demand from NWSDB customers?

The attackers demanded 1.5 BTC (Bitcoin) as ransom payment, claiming that customer data could only be recovered if this amount was paid to their Bitcoin wallet address.

Was customer data compromised in the NWSDB cyberattack?

NWSDB officials claim that no customer data was compromised during the incident. However, it remains unclear how the attackers obtained the phone numbers to send the fraudulent messages if no data was breached.

Who claimed responsibility for the NWSDB attack?

The fraudulent messages indicated that the attack was carried out by a group calling itself 'Alpha Team,' as stated in the ransom messages sent to customers.

When did the NWSDB cyberattack occur?

The cyberattack on the National Water Supply and Drainage Board of Sri Lanka occurred on Sunday, June 1, 2025.

What is the National Water Supply and Drainage Board of Sri Lanka?

The National Water Supply and Drainage Board (NWSDB) is Sri Lanka's government agency responsible for providing water supply and drainage services to customers across the country.

Incident

Sri Lanka Water Board SMS portal compromised in cyberattack

Q: What did the fraudulent SMS messages from NWSDB say?

The malicious messages stated: 'Your Waterboard account has been hacked by Alpha Team… Your data can recover if we got 1.5 BTC' and included a Bitcoin wallet address for ransom payment.

published: June 3, 2025

Take action: If the claims of no customer data breach are true it means that some API key was leaked so the attackers only got access to the SMS gateway.

Learn More

The National Water Supply and Drainage Board (NWSDB) of Sri Lanka was hit by a cyberattack on its SMS communication system on Sunday, June 1, 2025, when an unauthorized individual gained access to the agency's website and SMS gateway.

The attackers accessed the SMS portal and sent approximately 10,000 fraudulent messages to customers falsely claiming that their water board accounts had been hacked. The malicious messages stated: "Your Waterboard account has been hacked by Alpha Team… Your data can recover if we got 1.5 BTC" and included a Bitcoin wallet address for ransom payment.

Despite the security breach of the SMS system, NWSDB officials claim that no customer data was compromised during the incident. It's unclear how the attackers knew the phone numbers if no data is breached.

Approximately 10,000 fraudulent messages were sent to customers' mobile phones. The exact number of customers who received these deceptive texts has not been disclosed by authorities.

Sri Lanka Water Board SMS portal compromised in cyberattack

Read More
Data breach at French Urssaf Pajemploi service exposes …
Third party supplier ransomware exposes Manchester Police officers
Finnish Security and Intelligence Service leaks its payroll …
Irish Office of the Ombudsman hit by ransomware …
Austrian Foreign Ministry reports data breach affecting travel …