TL;DR
Cambodia’s recent crackdown on cyberscam networks has led cybercriminals to test new operations in Sri Lanka. Authorities in both countries are monitoring the situation, which poses regional security challenges.
Cambodian authorities’ crackdown on cyberscam networks has prompted cybercriminal groups to test new operations in Sri Lanka, raising regional security concerns and prompting increased monitoring by law enforcement agencies.
Recent reports indicate that as Cambodia intensifies its efforts to dismantle cyberscam networks—through increased policing, raids, and legal measures—cybercriminals are shifting their activities to Sri Lanka. This shift is evidenced by emerging cyberattack patterns and scam operations originating from Sri Lankan IP addresses, according to cybersecurity sources.
Officials in Cambodia have confirmed that several cybercriminal groups have been disrupted, leading to a decline in scams targeting Cambodian victims. Meanwhile, cybersecurity analysts note a rise in scam campaigns and cyber intrusion attempts originating from Sri Lanka, suggesting that these groups are testing new operational bases in response to Cambodian crackdowns.
Authorities in Sri Lanka have acknowledged that they are aware of the increased cyber activity but have not confirmed any direct links to organized crime groups operating from Cambodia. Both countries are now cooperating more closely to track and counter these shifting cyber threats.
Implications for Regional Cybersecurity Stability
This development underscores the adaptability of cybercriminal networks in response to law enforcement crackdowns, highlighting the need for regional cooperation. The shift to Sri Lanka could complicate efforts to combat cyberscams and increase the risk of scams spreading across South Asia, affecting individuals and businesses alike.

Python Scripting for Cybersecurity: Linux Edition: Volume 1 – Beginner System Visibility Tools with Hands-On Python Projects
As an affiliate, we earn on qualifying purchases.
As an affiliate, we earn on qualifying purchases.
Regional Crackdowns Drive Cybercriminals to Seek New Bases
Over the past year, Cambodia has ramped up its efforts to dismantle cyberscam networks, including large-scale raids, legal reforms, and international cooperation. These measures have successfully disrupted several major operations, leading to a noticeable decline in scams originating within Cambodia.
Cybercriminal groups, however, are known for their resilience and adaptability. Reports from cybersecurity firms indicate that following Cambodia’s crackdown, there has been a surge in scam activities emanating from Sri Lanka, where law enforcement has yet to implement equally stringent measures. This pattern reflects a common tactic among cybercriminals to relocate operations to less-policed regions.
This trend raises concerns about the potential for increased cybercrime activity in Sri Lanka and the broader South Asian region, emphasizing the importance of regional cybersecurity collaboration.
“Cybercriminals are rapidly testing new operational bases in Sri Lanka as Cambodia tightens its grip on cybercrime networks. This shift could lead to a broader regional escalation if not addressed collectively.”
— an anonymous cybersecurity researcher
Unconfirmed Links Between Cambodia and Sri Lankan Cybercriminals
It is not yet clear whether the cybercriminal groups operating from Sri Lanka are directly connected to those disrupted in Cambodia. Authorities are still investigating the extent of coordination or shared leadership among these networks.
Enhanced Monitoring and International Cooperation Expected
Law enforcement agencies across South Asia are expected to increase surveillance and cooperation to track these shifting cyber threats. Cambodia and Sri Lanka are likely to strengthen bilateral efforts, with regional organizations possibly stepping in to coordinate responses. Further investigations are anticipated to clarify the scope and scale of these cybercriminal operations.
Key Questions
Why are cybercriminals shifting from Cambodia to Sri Lanka?
Cybercriminals are shifting operations due to Cambodia’s intensified crackdown efforts, which have disrupted many networks. Sri Lanka currently offers a less-policed environment, making it a more attractive base for illicit activities.
What kind of cybercrimes are involved?
The activities primarily involve cyberscams, including phishing, fake investment schemes, and other online frauds targeting victims across South Asia and beyond.
How are authorities responding to this shift?
Authorities in both Cambodia and Sri Lanka are increasing surveillance, sharing intelligence, and collaborating more closely to track and dismantle these networks.
Could this lead to an increase in scams in Sri Lanka?
Yes, if cybercriminals establish more operational bases, there could be a rise in scams originating from Sri Lanka, impacting local and regional victims.
What can individuals do to protect themselves?
People should remain vigilant against online scams, avoid sharing personal information with unknown contacts, and report suspicious activities to authorities.
Source: The Diplomat