Anonymous Sudan Targets A Telecommunications Company in Mauritania

By Miklos Zoltan . 18 March 2024

Founder - Privacy Affairs

Fact-Checked this

1 Comments

Anonymous Sudan recently announced a successful breach against Mauritel, a telecommunications company from Mauritania. The hackers announced the cyber attack on their public platform but didn’t state any reasons for the breach.

Anonymous Sudan is a controversial cybercriminal gang with politically and ideologically driven goals
No Mauritel representative has come forth with a public statement regarding the attack
It’s unclear whether the breach resulted in any data leak or how damaging it’s been for the victim
Anonymous Sudan has a history of politically and religiously driven cybercriminal activities and now ranks as a global threat

Ideologically-driven cyber attacks are nothing new in the cybercriminal sphere. Many organizations indulge in them and many of these groups are often affiliated to specific states. Publicly, they are rogue entities, but everybody can see beneath the façade.

NoName is currently one of the most notorious cybercriminal rings with self-described pro-Russian affinities and a loaded political agenda. NoName first appeared in 2022, shortly after Russia’s invasion of Ukraine and took off very fast.

X showing the Anonymous Sudan attack on Mauritel — https://twitter.com/FalconFeedsio/status/1769337754268393616

This situation is similar to that of Anonymous Sudan, as the organization first emerged in 2023. The trigger was Rasmus Paludan, a far-right activist who burned a Quran in a public space in Sweden. Shortly after, Anonymous Sudan announced its arrival.

But not everything is what it seems. Some theories suggest that Anonymous Sudan is using a fake profile and markets itself as something it’s not. Let’s get into that.

What’s The Truth About Anonymous Sudan?

While nobody has the definitive truth, there is a theory that holds sufficient water to warrant a second look. Anonymous Sudan is a self-described pro-Islamic organization with the sole goal is protecting the interests of the Islamic world.

But many people have noticed that some things don’t add up, such as:

Anonymous Sudan was posting exclusively in Russian on their Telegram channel
When people noticed that, they deleted all their Russian posts and switched it to Arabic
Anonymous Sudan collaborates with known pro-Russian organizations like NoName and Killnet
The group has targeted anti-Russian organizations multiple times in the past
No clear link has been found between Anonymous Sudan and Islam. Or Sudan, for that matter

The only connection between Anonymous Sudan and the Islamic world is the hackers’ word. All evidence points to Anonymous Sudan being a pro-Russian organization set to protect Russian interests. But why wouldn’t the hackers come forth to state that plainly?

The theory is that Anonymous Sudan prefers it like this. This way, whoever is behind the gang can conduct cyber-attacks that benefit Russia without exposing themselves. This turns Anonymous Sudan into the perfect scapegoat because they’re a ghost entity.

Naturally, there is no definitive evidence to validate this theory. But it is interesting enough to keep it in the back of one’s mind. When it comes to the motivation for the attacks, Anonymous Sudan sticks to its ideological motives.

The organization even started conducting for-profit operations in June 2023, managing to extort victims of millions of dollars. This shows that the cybercriminal gang is multi-dimensional and a real threat to the global state of affairs.

Our Mission

We believe security online security matters and its our mission to make it a safer place.

Founder & CEO Privacy Affairs

Miklos Zoltan is the founder and CEO of Privacy Affairs. Miklos has long-time experience in cybersecurity and data privacy having worked with international teams for more than 10 years in projects involving penetration testing, network security and cryptography.

Miklos founded Privacy Affairs in 2018 to provide cybersecurity and data privacy education to regular audiences by translating tech-heavy and "geeky" topics into easy-to-understand guides and tutorials.

Miklos Zoltan

1 Comment

Mauritania Injector

March 19, 2024 9:28 pm

The Mauritel website is considered very weak, and anyone with average expertise can disable it. This should serve as a motivation for the company to enhance the security of its website and protect user data. Securing websites is an essential necessity in the modern era of technology, where cyber threats are continuously increasing.
Indeed, I have previously mentioned to the relevant authorities the weakness of their website’s security. Companies should listen to user feedback and work on improving website security and enhancing protection. There may be tools and techniques available to enhance security, such as software updates, protection against DDoS attacks, two-factor authentication, and data encryption

Cookie	Duration	Description
CookieLawInfoConsent	1 year	CookieYes sets this cookie to record the default button state of the corresponding category and the status of CCPA. It works only in coordination with the primary cookie.
viewed_cookie_policy	1 year	The GDPR Cookie Consent plugin sets the cookie to store whether or not the user has consented to use cookies. It does not store any personal data.
wpEmojiSettingsSupports	session	WordPress sets this cookie when a user interacts with emojis on a WordPress site. It helps determine if the user's browser can display emojis properly.

Cookie	Duration	Description
_ga	1 year 1 month 4 days	Google Analytics sets this cookie to calculate visitor, session and campaign data and track site usage for the site's analytics report. The cookie stores information anonymously and assigns a randomly generated number to recognise unique visitors.
_ga_*	1 year 1 month 4 days	Google Analytics sets this cookie to store and count page views.
_gat_UA-*	1 minute	Google Analytics sets this cookie for user behaviour tracking.
_gid	1 day	Google Analytics sets this cookie to store information on how visitors use a website while also creating an analytics report of the website's performance. Some of the collected data includes the number of visitors, their source, and the pages they visit anonymously.
_omappvp	1 year 1 month 4 days	The _omappvp cookie is set to distinguish new and returning users and is used in conjunction with _omappvs cookie.
_omappvs	20 minutes	The _omappvs cookie, used in conjunction with the _omappvp cookies, is used to determine if the visitor has visited the website before, or if it is a new visitor.