Latest news with #CNSS
Morocco World
3 days ago
- Politics
- Morocco World
Report Suggests Algeria's Hacking Group Targeted Moroccan Notaries Platform, Not ANCFCC
Rabat – Hacking attacks against Moroccan institutional databases sparked debate and concern among citizens and experts, especially with the latest wave of reports that alleged a breach instigated by the Algerian group, Jabaroot DZ. Reports suggested that the Algerian group targeted Morocco's National Agency for Land Registry, known as ANCFCC. The reports came after the group claimed to have accessed over four terabytes of land-related data. However, sources from the land registry agency denied that it is the agency's system that was directly targeted, clarifying that the breach involved a notaries' platform, Tawtik, which is managed independently. Le360 quoted an authorized source from ANFCC, who said that no intrusion or data leak has been detected in its information system. Le360 said the Algerian hacking group may have access to data on the notaries' platform by 'exploiting vulnerabilities in inadequately protected computers.' The Moroccan agency sent a letter to notaries warning them about cybersecurity risks, urging them to take all necessary precautions. It also temporarily suspended access to its platform in April and closed the platform entirely to all professionals, reverting to paper-based filling and in-person payments at physical counters to avoid any security breaches. This came when the same group claimed responsibility for the hacking of the National Social Security Fund (CNSS) database. Several documents have gone viral online, with experts warning citizens not to open the files as they could include security threats that could target their data. Earlier this year, the same group claimed responsibility for the hacking of the National Social Security Fund (CNSS) database. The intrusion exposed personal data of nearly 2 million Moroccan employees across 500,000 businesses registered with the Moroccan social security. Morocco has been pledging to strengthen its efforts to ensure strong cybersecurity to tackle similar crises. In April, cybersecurity giant Kaspersky said Morocco ranks among Africa's most frequently targeted countries for digital attacks. The ranking places Morocco third among African countries facing web-based threats, with 12.6 million attack attempts documented in 2024. Kenya tops the list with nearly 20 million incidents, while South Africa follows with approximately 17 million. Web threats targeting African businesses jumped 1.2% compared to 2023, with over 131.5 million total threats detected regionwide this year. In-device threats climbed 4% in African organizations since 2024. Tags: Africa CybersecurityCybersecurity
Ya Biladi
4 days ago
- Politics
- Ya Biladi
After CNSS, Algerian hacking group Jabaroot strikes again, targeting Morocco's land registry
For the past two months, users of the National Agency for Land Conservation, Cadastre, and Cartography (ANCFCC) platform have been unable to download cadastral documents online. While this restriction was initially seen as a heightened security measure following the recent CNSS hacking incident, it now appears to be linked to a new massive data leak. The same hacking group behind the previous breach—Jabaroot, which claims Algerian origins—has posted a link on a dark web forum revealing: - Over 10,000 property certificates in PDF format, taken from a database said to contain more than 10 million records. Around 20,000 assorted documents—including notarial deeds, ID cards, passports, civil status records, and bank statements—representing a sample from a collection of more than 4 million files, totaling 4 terabytes of data. - Documents marked as «VIP», allegedly containing sensitive information on prominent Moroccan figures such as Mohammed Yassine Mansouri, head of foreign intelligence; Nasser Bourita, Minister of Foreign Affairs; and Fouzi Lekjaa, Delegate Minister for the Budget. A Hack with Geopolitical Implications According to the message posted alongside the leak—which forum admins have since removed—the attack is meant to retaliate against what the hackers call «anti-Algerian propaganda recently spread by certain Moroccan media». These outlets reported that Paris was considering freezing the assets of high-ranking Algerian officials—a claim the hackers dismiss as false—and accuse Rabat of interfering in a bilateral issue between France and Algeria. But this explanation seems like a smokescreen. Why target Moroccan officials when the threat of asset freezes comes from Paris? The hack looks more like a diversion by Algiers, coming right after a diplomatic setback : The United Kingdom, the third permanent member of the UN Security Council, officially backed Morocco's autonomy plan for the Sahara. This major political shift drew a sharp and confused response from Algeria's Foreign Minister, Mohamed Attaf. CNSS hack —also linked to Jabaroot—which compromised the personal data of thousands of insured individuals, including their salary information.
Morocco World
4 days ago
- Politics
- Morocco World
Algerian ‘Jabaroot' Group Behind CNSS Breach Attacks Moroccan Property Registry
Doha – The Moroccan National Agency for Land Conservation, Cadastre and Cartography (ANCFCC) has become the latest victim of a major cyberattack claimed by 'Jabaroot,' the same hacker group behind April's CNSS breach. The group, which identifies itself as Algerian, announced the attack on Monday, allegedly resulting in the theft and subsequent leak of thousands of sensitive property documents. According to claims the group made on their Telegram channel, the hackers have exfiltrated and released what they describe as 'a massive amount of sensitive data' from ANCFCC's databases. The leaked information reportedly includes 10,000 property ownership certificates out of a total database of more than 10 million land titles. The compromised data allegedly contains cadastral information, property owner identities, real estate references, and various personal and administrative documents. These include approximately 20,000 various documents such as sales deeds, civil status documents, copies of ID cards, passports, and banking documents, amounting to approximately 4 terabytes of data. This cyberattack comes approximately two months after the same group claimed responsibility for hacking the National Social Security Fund (CNSS) database in April. That intrusion exposed personal data of nearly 2 million Moroccan employees across approximately 500,000 businesses registered with the CNSS. Immediately following that earlier breach, the land registry agency had temporarily suspended access to its online platform on April 14—particularly the service dedicated to notaries—and decided to close the platform entirely to all professionals and users, reverting to paper-based filing and in-person payments at physical counters using the old method. The agency had then urged all professionals—including notaries, lawyers, and users—to go directly to land registry agencies to process their filings and payments in person until further notice. An 'unjustified intervention' The Jabaroot group has justified this attack as a direct response to what they call 'Moroccan media's false propaganda' regarding rumors about France freezing assets belonging to high-ranking Algerian officials. 'These political tensions only concern France and Algeria,' the group stated, describing the alleged propaganda as 'an unjustified intervention and an opportunistic way to attack Algeria again on the international stage.' Some of the first documents published on the Telegram channel reportedly involve real estate transactions by high-profile Moroccan public figures. The hackers specifically claim to have released sensitive documents belonging to senior Moroccan officials, including what they allege are documents of Mohamed Yassine Mansouri, the director general of foreign intelligence. The group has made serious allegations that 'while the Moroccan people suffer from poverty and deprivation in various forms, Mansouri spent more than MAD 3.5 million ($350,000) between 2022 and 2023, and established companies in his daughter's name.' At the time of reporting, ANCFCC has not yet officially addressed the origin of these alleged leaks or the authenticity of the circulated documents. It remains unclear whether the method of intrusion into the land registry database is identical to the one used against the CNSS. Tags: Algerian hackersancfcccyberattack
Morocco World
23-04-2025
- Politics
- Morocco World
Transparency Maroc: CNSS Data Breach Exposes Critical Flaws in Morocco's Cybersecurity
Doha – Transparency Maroc issued a statement on Monday expressing 'profound concern' over the massive data leak from the National Social Security Fund (CNSS), which has compromised the personal information of nearly two million individuals and approximately 500,000 registered businesses. 'The cyberattacks have led to widespread leaks of critical personal data in several government agencies, including the Ministry of Employment and the National Social Security Fund,' the anti-corruption watchdog stated. 'These leaks could destabilize and threaten social and national peace.' The NGO cautioned that this represents a grave violation, as 'the Constitution guarantees the protection of data, regulated by law 09-08 relating to the protection of individuals with regard to the processing of personal data.' The organization criticized the inadequate response from the affected institutions, pointing out they chose 'threat and intimidation' instead of reassuring users and offering apologies. 'The ministers concerned who chair the boards of directors have not made themselves heard,' Transparency Maroc noted. The data breach, which occurred earlier this month, is considered Morocco's most substantial cybersecurity incident to date. The attack exposed highly sensitive personal information including full names, national ID numbers, passport details, email addresses, phone numbers, salary information, and banking credentials. According to cybersecurity experts, the breach reveals serious vulnerabilities in the country's digital infrastructure. Outdated systems, inadequate staff training, and insufficient governance frameworks have all contributed to creating an environment where such attacks can succeed. Transparency Maroc has called for greater accountability and transparency regarding the incident. The organization is demanding public disclosure about 'the strategy of public authorities regarding information systems security' and the quality of personal data protection at the national level. Read also: Kaspersky: Morocco Ranks High Among Top Targets for Cyberattacks in Africa The anti-corruption group has also demanded the revelation of 'those responsible who authorized certain service providers to perform consulting, assistance, training, software and security hardware sales in addition to the audit mission, which constitutes an obvious conflict of interest.' Additionally, it sought information about 'the results of the tender offer No. 15/2021, dated August 2021, related to supporting the National Social Security Fund in complying with the requirements of Law 09-08,' which they noted should have been legally published on the Fund's website. Experts point out that the breach highlights the urgent need for comprehensive cybersecurity measures. Regular security audits, staff awareness programs, and robust data classification systems are essential components of an effective defense strategy. The implementation of advanced technologies, including artificial intelligence-based threat detection systems, could also help prevent similar incidents in the future. The incident has also raised questions about the effectiveness of Morocco's cybersecurity infrastructure despite the country's reputation for having strong digital defenses. While the General Directorate of Information Systems Security (DGSSI) and the National Commission for the Control of Personal Data Protection (CNDP) have been praised for their work in establishing regulatory frameworks and raising awareness, the breach demonstrates that crucial vulnerabilities remain. Transparency Maroc concluded its statement by calling on 'the government to publish the results of investigations into these important matters with full transparency in the interest of all concerned parties.'
Ya Biladi
12-04-2025
- Politics
- Ya Biladi
Moroccan hackers leak 34GB of Algerian Ministry data in yet another retaliatory move
Estimated read time: 2' Cyberattacks between Algeria and Morocco have turned into a digital game of ping-pong, with each side trading blows and neither gaining ground. Just days after the Algerian hacker group JabaRoot DZ claimed responsibility for breaches targeting Morocco's national social security fund CNSS and Ministry of Employment, a new cyberattack attributed to Moroccan hackers was announced on April 12, allegedly leaking 34 GB of sensitive data from Algeria's Ministry of Pharmaceutical Industry. The Moroccan-affiliated group MORH4x claimed responsibility for the breach on the specialized forum BreachForums. According to initial reports, the leaked files span from 2019 to 2025 and include: A deliberate cyber retaliation The message accompanying the data dump made the motive clear: the attack is a direct response to the April 8 cyberattack targeting Moroccan institutions. It is part of a growing structured digital escalation between the two countries, driven by politically motivated and symbolically powerful digital offensives. MORH4x claims the aim is not only retaliation but also an attempt to shed light on the opaque workings of Algeria's medical supply chain—identifying companies that benefit from it and exposing networks distributing psychotropic drugs across the country. A cyberwarfare in three acts This latest operation marks the third major incident in a series of back-and-forth cyberattacks in recent weeks. Before the breach of Algeria's Ministry of Pharmaceutical Industry, another Moroccan group reportedly infiltrated the systems of the General Mutual of Posts and Telecommunications of Algeria (MGPTT), in response to the initial attack on CNSS. These digital tit-for-tat attacks seem to have moved beyond individual acts of hacking to become part of a broader ideological campaign, unfolding against a backdrop of longstanding geopolitical tensions between Algiers and Rabat. While the full authenticity of the leaked data is yet to be independently verified, samples released online strongly suggest a significant breach. Nonetheless, observers are raising concerns about the ethical and human toll of this cyber escalation. Behind these battles between hacker groups lies the personal data of millions of Moroccan and Algerian citizens—now potentially exposed, and in some cases, irreversibly so.
