#1 Middle East & Africa Trusted Cybersecurity News & Magazine |

32 C
Dubai
Wednesday, July 2, 2025
HomeAmericaTwo Sudanese Nationals Indicted for Alleged Role in Global Cyberattacks on Critical...

Two Sudanese Nationals Indicted for Alleged Role in Global Cyberattacks on Critical Infrastructure

Date:

Related stories

PDFs: Portable Documents or Perfect Phishing Vectors?

Cybersecurity professionals are sounding the alarm: PDF attachments are...

Google Urgently Patches CVE‑2025‑6554 Zero‑Day in Chrome 138 Stable Update

On 26 June 2025, Google rapidly deployed a Stable Channel update...

French Police Arrest Five Key Operators Behind BreachForums Data-Theft Platform

On 25 June 2025, France’s specialist cybercrime unit (BL2C) detained five...
spot_imgspot_imgspot_imgspot_img

In a recent and significant cybercrime case, two Sudanese nationals have been indicted by a federal grand jury in the United States for their involvement in orchestrating devastating cyberattacks that targeted critical infrastructure, including hospitals and government facilities in Los Angeles and worldwide. The suspects, linked to the notorious Anonymous Sudan group, are accused of conducting over 35,000 Distributed Denial of Service (DDoS) attacks, causing widespread disruptions and millions in damages.

The U.S. Department of Justice unsealed the indictment, which charges Ahmed Salah Yousif Omer, 22, and Alaa Salah Yusuuf Omer, 27, for their roles in Anonymous Sudan, a cybercriminal group responsible for launching tens of thousands of DDoS attacks targeting sensitive government agencies, critical infrastructure, and corporate networks. The attacks, which spanned across various regions, reportedly caused over $10 million in damages, crippling services and endangering lives.

The Scale and Impact of the Attacks
Anonymous Sudan’s cyberattacks included high-profile targets such as Cedars-Sinai Medical Center in Los Angeles, whose emergency department was rendered inoperable for eight hours due to a sustained attack. During this period, incoming patients had to be redirected to other hospitals, demonstrating the real-world impact of such cyber offenses on public health and safety.

Additional targets included critical U.S. government agencies like the Department of Justice, the Department of Defense, the FBI, and the State Department, as well as major tech platforms including Microsoft and Riot Games. These attacks led to prolonged service outages and disrupted thousands of businesses and individuals globally.

The group’s malicious activities primarily relied on a Distributed Cloud Attack Tool (DCAT), which went by various codenames like “Godzilla,” “Skynet,” and “InfraShutdown.” This DDoS tool was a potent weapon, allowing Anonymous Sudan to launch relentless attacks, often lasting days and severely crippling victims’ systems.

Seizure of Key DDoS Tools
In a coordinated effort between the FBI, the Defense Criminal Investigative Service (DCIS), and the State Department’s Diplomatic Security Service, law enforcement officials managed to seize and disable the DCAT tool in March 2024. The U.S. government obtained court-authorized warrants to shut down the key servers controlling the attacks, marking a critical victory in the fight against cybercrime.

FBI Special Agent in Charge Rebecca Day lauded the operation’s success, stating, “The FBI’s mix of unique authorities, capabilities, and partnerships has allowed us to neutralize this significant threat to global cybersecurity.” Day emphasized that this seizure effectively disabled the infrastructure Anonymous Sudan used to disrupt networks across the world, including those supporting vital government functions and healthcare services.

The attackers were also brazen in their public claims, taking credit for their cyber offensives via online platforms and boasting about their ability to create widespread chaos. According to U.S. Attorney Martin Estrada, “Anonymous Sudan sought to maximize havoc and destruction against governments and businesses worldwide by perpetrating tens of thousands of cyberattacks.” These attacks weren’t limited to the U.S., as Anonymous Sudan also targeted international networks, further underscoring the global reach of this cybercrime group.

Operation PowerOFF
The actions taken against Anonymous Sudan were part of a larger international initiative known as Operation PowerOFF, a coordinated effort among law enforcement agencies worldwide to dismantle criminal DDoS-for-hire infrastructures. As part of this operation, agencies have worked to disrupt DDoS services and hold the administrators of these illegal platforms accountable.

With support from cybersecurity firms like Akamai, Cloudflare, Crowdstrike, Microsoft, and others, law enforcement agencies were able to track and disrupt the group’s activities. The operation has already led to multiple arrests and seizures, marking a significant step toward reducing the prevalence of DDoS attacks globally.

10 Tips to Avoid Future Cyber Threats:

  1. Implement Multi-Layered Security Measures – Use firewalls, intrusion detection systems, and anti-DDoS solutions to strengthen defenses.
  2. Regularly Update and Patch Systems – Outdated software is a major vulnerability that attackers exploit. Ensure all systems are kept up to date.
  3. Educate Employees on Cyber Hygiene – Conduct regular training on recognizing phishing attacks and maintaining good password practices.
  4. Monitor Networks Proactively – Use advanced monitoring tools to detect suspicious activities before they escalate into major breaches.
  5. Use Zero Trust Architecture – Adopt a Zero Trust model, ensuring strict verification of every user and device attempting to access the network.
  6. Engage in Red Team Exercises – Simulate attacks to assess your organization’s readiness and improve incident response strategies.
  7. Partner with Cybersecurity Experts – Collaborate with trusted third-party cybersecurity firms for regular audits and penetration testing.
  8. Backup Data Regularly – Ensure you have secure, isolated backups in case of an attack, which will allow for quicker recovery.
  9. Invest in Cyber Insurance – Cyber insurance can help mitigate financial risks associated with major attacks and data breaches.
  10. Collaborate with Law Enforcement – Engage in public-private partnerships to stay informed about emerging threats and best practices.

Conclusion:
The indictment of two Sudanese nationals linked to Anonymous Sudan marks a critical win in the battle against cybercrime. Their DDoS attacks wreaked havoc on hospitals, government facilities, and tech companies, emphasizing the need for ongoing vigilance and cooperation between public and private sectors. The global nature of cyber threats necessitates robust security practices to safeguard critical infrastructure and sensitive data. Organizations must continue to prioritize cybersecurity by adopting proactive measures and collaborating with industry partners to mitigate the risks posed by malicious actors.

Want to stay on top of cybersecurity news? Follow us on Facebook – X (Twitter) – Instagram – LinkedIn – for the latest threats, insights, and updates!

Ouaissou DEMBELE
Ouaissou DEMBELEhttp://cybercory.com
Ouaissou DEMBELE is a seasoned cybersecurity expert with over 12 years of experience, specializing in purple teaming, governance, risk management, and compliance (GRC). He currently serves as Co-founder & Group CEO of Sainttly Group, a UAE-based conglomerate comprising Saintynet Cybersecurity, Cybercory.com, and CISO Paradise. At Saintynet, where he also acts as General Manager, Ouaissou leads the company’s cybersecurity vision—developing long-term strategies, ensuring regulatory compliance, and guiding clients in identifying and mitigating evolving threats. As CEO, his mission is to empower organizations with resilient, future-ready cybersecurity frameworks while driving innovation, trust, and strategic value across Sainttly Group’s divisions. Before founding Saintynet, Ouaissou held various consulting roles across the MEA region, collaborating with global organizations on security architecture, operations, and compliance programs. He is also an experienced speaker and trainer, frequently sharing his insights at industry conferences and professional events. Ouaissou holds and teaches multiple certifications, including CCNP Security, CEH, CISSP, CISM, CCSP, Security+, ITILv4, PMP, and ISO 27001, in addition to a Master’s Diploma in Network Security (2013). Through his deep expertise and leadership, Ouaissou plays a pivotal role at Cybercory.com as Editor-in-Chief, and remains a trusted advisor to organizations seeking to elevate their cybersecurity posture and resilience in an increasingly complex threat landscape.

Subscribe

- Never miss a story with notifications

- Gain full access to our premium content

- Browse free from up to 5 devices at once

Latest stories

spot_imgspot_imgspot_imgspot_img

LEAVE A REPLY

Please enter your comment!
Please enter your name here