Anonymous Sudan has been linked to a series of alleged Distributed Denial of Service (DDoS) attacks on prominent UK universities, including the University of Cambridge and the University of Manchester.
The group, believed to be utilizing the Skynet botnet, recently upgraded its capabilities. In a post attributed to the threat actor, Anonymous Sudan cited reasons for the attack, including the UK’s perceived support for Israel and involvement in conflicts such as the Gaza and bombing campaigns in Yemen.
Anonymous Sudan University Cyberattack Claims
The Cyber Express has reached out to both the universities to learn more about the University of Cambridge cyberattack and the University of Manchester cyberattack.
In a conversation with TCE, a spokesperson for the University of Cambridge said, “The intermittent network access issues experienced by some users at the University of Cambridge in the last 24 hours have been resolved and normal service should now be restored for centrally managed IT services.”
However, at the time of writing this, the University of Manchester have not shared any update regarding the attack, leaving the claims hanging from university’s side.
However, the threat actor asserted these university cyberattacks, stating, “We have executed a MAJOR cyber attack on the digital infrastructure of 2 of the biggest UK universities; University of Cambridge University of Manchester. A Reason for the Attack: UK’s unconditional support for Israel and complicity in the ongoing genocide in Gaza as well as bombing campaigns on Yemen. We therefore claim any harm to the aforementioned universities & any collateral damage.”
Beyond these specific incidents, colleges and universities are increasingly becoming prime targets for cyberattacks. The wealth of personal, financial, and confidential data, coupled with valuable research findings, makes higher education institutions lucrative targets for threat actors.
Who is Anonymous Sudan
Anonymous Sudan, a hacker group, engaged in numerous distributed denial-of-service (DDoS) attacks worldwide since early 2023. Despite claiming Sudanese roots and targeting “anti-Muslim activity,” their actual origins remain ambiguous, possibly linked to Russia.
Employing public warnings and propaganda, they garnered attention but were only one among many utilizing DDoS attacks. Their motives, obscured by collaboration with groups like Killnet, extended beyond ideological pursuits.
Suspected ties to Russia arose from linguistic cues and infrastructure similarities. Anonymous Sudan primarily utilized DDoS tactics, inundating targets with malicious traffic, often preceded by public threats.
Their methods include HTTP floods and rented server clusters, hinting at substantial financial backing. Their modus operandi sought attention and induced uncertainty, although their true intentions and origins remained elusive.
Mitigation Strategies for Universities
Protecting these institutions poses unique challenges due to the need for open access to networks by both employees and students. Mitigating cyber threats involves understanding various attack vectors and implementing appropriate solutions.
According to Lamar University, among the identified threats targeting universities and educational institutions are phishing and spear phishing attacks, exploiting outdated operating systems and software, and unauthorized hardware access.
To address these challenges, education on cybersecurity practices, strong password policies, multi-layer security measures, encryption of sensitive data, and multi-factor authentication are crucial.
Additionally, regular data backups are essential to mitigate the impact of ransomware attacks, while limiting access to sensitive data helps minimize risks associated with insider threats.
As for the University of Manchester cyberattack, it is an ongoing story and we’ll update the post once we have more information on the university cyberattacks or any official confirmation from the educational institutions.
Media Disclaimer: This report is based on internal and external research obtained through various means. The information provided is for reference purposes only, and users bear full responsibility for their reliance on it. The Cyber Express assumes no liability for the accuracy or consequences of using this information.
