Latest news with #GeneralDirectorateofInformationSystemsSecurity
Morocco World
21-04-2025
- Morocco World
Security Alert: Critical Vulnerability Found in WordPress Plugin
Rabat — Moroccan authorities have warned WordPress users about a critical security flaw in a popular plugin. The General Directorate of Information Systems Security (DGSSI), operating under the National Defense Administration, issued the alert through its cybersecurity monitoring center. The vulnerability specifically affects the 'InstaWP Connect' plugin in versions older than 0.1.0.88. Identified as CVE-2025-2636. This security hole allows unauthorized hackers to remotely execute malicious PHP code on affected websites. WordPress has already released a security patch to fix the issue. Site administrators are strongly urged to update their plugins immediately through the WordPress dedicated page to protect against potential attacks. This warning comes amid recurring cyberattacks targeting Moroccan government websites, chiefly carried out by hacker groups believed to be from or linked to Algeria. The country's critical infrastructure faces persistent threats, while GITEX Africa 2025 revelations from Kaspersky paint a concerning picture. Morocco now ranks third continent-wide for web-based attacks, with hackers launching over 12.6 million attempts against Moroccan targets in 2024 alone. Bank Al-Maghrib has stepped forward with comprehensive security guidelines, aiming to protect citizens navigating an increasingly digitized financial landscape. These developments underscore an urgent reality: strengthening Morocco's digital defenses has become an essential pillar for national security. Read also: Bank Al-Maghrib Issues Digital Banking Security Guide as Online Services Grow
Ya Biladi
12-03-2025
- Business
- Ya Biladi
Morocco approves Damanesign as Qualified Trust Service Provider for e-signatures
Damanesign, a Moroccan startup for the verification of e-signatures and other digital services, has officially received the Qualified Trust Service Provider certification from the General Directorate of Information Systems Security (DGSSI). This recognition enables the company to issue qualified electronic signature certificates that meet the required security standards, particularly for public contracts and sensitive transactions. With this certification, Damanesign can provide businesses and administrations with qualified electronic signature keys, ensuring the authenticity, integrity, and legal value of signed documents. This type of signature, considered the most stringent in terms of regulation, becomes a key tool for stakeholders wishing to secure their digital transactions and ensure their legal recognition. As a Qualified Trust Service Provider, Damanesign offers a complete range of e-signatures (simple, advanced, and qualified), enabling organizations to optimize their exchanges while complying with current regulatory requirements. The qualified signature keys issued by Damanesign offer several advantages: • The ability to sign contracts, public contracts, and sensitive documents in compliance with regulations; • Enhanced authentication, ensuring the signer's identity with a high level of reliability;
