The threat actor posted on its dark web forum and claimed to have successfully launched a DDoS attack on Emirates National Oil Company.
The Telegram channel of Anonymous Sudan had a screenshot of an inactive ENOC website. However, the ENOC website was accessible at the time of publishing the report, showing no signs of the claimed DDoS attack on Emirates National Oil Company.
To confirm the authenticity of the claimed DDoS attack on Emirates National Oil Company, The Cyber Express promptly reached out to the ENOC officials. However, no official response had been received from the company at the time of publishing this report.
Anonymous Sudan and DDoS Attack on Emirates National Oil Company
At 07:09 hrs UTC on May 17, Anonymous Sudan announced that they had successfully executed a DDoS attack on Emirates National Oil Company.
The group, known for its hacktivist activities aimed at promoting social justice and political change, shared a site checker link to substantiate their claims. This link, intended to validate the impact of the attack on the targeted website, added weight to the group’s assertion.
However, one must note that organizations targeted by cyberattacks often take time to investigate and assess the situation before issuing a statement. In some cases, the threat actor might confuse the target company with another company or fake a hacking incident for publicity.
As one of the vital pillars of the United Arab Emirates economy, ENOC plays a pivotal role in the region. A successful DDoS attack on such an entity can have various consequences, including reputational damage, financial losses, and potential disruptions in the oil and gas sector.
Earlier this month, Anonymous Sudan claimed to have launched a DDoS attack on the online banking portals of three major financial institutions in the UAE, causing a temporary disruption in their services
If the attacker’s claims of the DDoS attack on Emirates National Oil Company are true, ENOC’s ability to mitigate the attack’s impact and recover swiftly will be crucial in maintaining stability and confidence in the sector’s operations.
Anonymous Sudan: Motives and Modus Operandi
While self-proclaimed hacktivist groups like Anonymous Sudan claim to operate to expose corruption and advocate for change, their methods often involve unauthorized access to computer systems and disruptive cyber attack tactics.
Despite their claims to support the regions, Anonymous Sudan bears no connection to either the renowned Anonymous collective or the country of Sudan.
Instead, it operates under the guise of Arabic and religious allusions for a more insidious purpose: a disinformation campaign meticulously crafted by Russian forces.
In a similar incident last February, Anonymous Sudan launched a mass DDoS attack on multiple companies in the US. The group has been perpetrating cyber espionage on multiple nations, governments, and private organizations to align with the Pro Russian movement.
The hacker group asserted that it had launched a denial of service (DDoS) attack on the United States Department of Defense website and compromised companies like PayPal, Microsoft, and American Express.
The DDoS attack claimed by Anonymous Sudan on the Emirates National Oil Company serves as a wake-up call for organizations in the Middle East and Africa region to bolster their cybersecurity defenses.
The incident highlights hacktivist groups’ growing capabilities and intentions, emphasizing the need for robust threat intelligence and proactive cybersecurity strategies. By investing in advanced security measures, organizations can better protect their critical infrastructure and mitigate the potential risks of cyber threats.