NordVPN Promotion

Home / News

Sudanese Nationals Charged in Global Cyberattack Campaign

Photo: FBI

Two Sudanese nationals have been indicted for allegedly leading Anonymous Sudan, a cybercriminal group responsible for over 35,000 Distributed Denial of Service (DDoS) attacks targeting critical infrastructure worldwide. The attacks affected hospitals, government facilities, and corporate networks, including in the United States, and caused over $10 million in damages. Key targets included Cedars-Sinai Medical Center, Microsoft, and the U.S. Department of Defense.

Global sabotage: The U.S. Department of Justice unsealed the indictment, which accuses Ahmed Salah Yousif Omer, 22, and Alaa Salah Yusuuf Omer, 27, of conspiring to damage protected computers. The group’s DDoS tool, known as DCAT, was seized in March 2024 through coordinated efforts by the FBI and other law enforcement agencies. The group allegedly offered their DDoS service for sale to other criminals, exacerbating the damage globally.

Disruptions impact: Anonymous Sudan’s attacks were particularly disruptive, including one incident where Cedars-Sinai’s emergency services were incapacitated for eight hours. The group’s activity is linked to widespread network outages and significant operational disruptions across sectors, with hospitals and tech companies among those most impacted.

This action is part of the broader Operation PowerOFF, a multinational effort aimed at dismantling illegal DDoS-for-hire services. If convicted, Ahmed Salah could face life imprisonment, while Alaa Salah faces up to five years. Law enforcement hailed the seizure of the DDoS tool as a significant victory for global cybersecurity.

NORDVPN DISCOUNT - CircleID x NordVPN
Get NordVPN  [74% +3 extra months, from $2.99/month]
By CircleID Reporter

CircleID’s internal staff reporting on news tips and developing stories. Do you have information the professional Internet community should be aware of? Contact us.

Visit Page

Filed Under

Comments

Comment Title:

  Notify me of follow-up comments

We encourage you to post comments and engage in discussions that advance this post through relevant opinion, anecdotes, links and data. If you see a comment that you believe is irrelevant or inappropriate, you can report it using the link at the end of each comment. Views expressed in the comments do not represent those of CircleID. For more information on our comment policy, see Codes of Conduct.

CircleID Newsletter The Weekly Wrap

More and more professionals are choosing to publish critical posts on CircleID from all corners of the Internet industry. If you find it hard to keep up daily, consider subscribing to our weekly digest. We will provide you a convenient summary report once a week sent directly to your inbox. It's a quick and easy read.

Related

Topics

DNS

Sponsored byDNIB.com

IPv4 Markets

Sponsored byIPv4.Global

New TLDs

Sponsored byRadix

Brand Protection

Sponsored byCSC

Cybersecurity

Sponsored byVerisign

Threat Intelligence

Sponsored byWhoisXML API

Domain Names

Sponsored byVerisign

NordVPN Promotion