Latest news with #Jabaroot
Ya Biladi
4 days ago
- Politics
- Ya Biladi
After CNSS, Algerian hacking group Jabaroot strikes again, targeting Morocco's land registry
For the past two months, users of the National Agency for Land Conservation, Cadastre, and Cartography (ANCFCC) platform have been unable to download cadastral documents online. While this restriction was initially seen as a heightened security measure following the recent CNSS hacking incident, it now appears to be linked to a new massive data leak. The same hacking group behind the previous breach—Jabaroot, which claims Algerian origins—has posted a link on a dark web forum revealing: - Over 10,000 property certificates in PDF format, taken from a database said to contain more than 10 million records. Around 20,000 assorted documents—including notarial deeds, ID cards, passports, civil status records, and bank statements—representing a sample from a collection of more than 4 million files, totaling 4 terabytes of data. - Documents marked as «VIP», allegedly containing sensitive information on prominent Moroccan figures such as Mohammed Yassine Mansouri, head of foreign intelligence; Nasser Bourita, Minister of Foreign Affairs; and Fouzi Lekjaa, Delegate Minister for the Budget. A Hack with Geopolitical Implications According to the message posted alongside the leak—which forum admins have since removed—the attack is meant to retaliate against what the hackers call «anti-Algerian propaganda recently spread by certain Moroccan media». These outlets reported that Paris was considering freezing the assets of high-ranking Algerian officials—a claim the hackers dismiss as false—and accuse Rabat of interfering in a bilateral issue between France and Algeria. But this explanation seems like a smokescreen. Why target Moroccan officials when the threat of asset freezes comes from Paris? The hack looks more like a diversion by Algiers, coming right after a diplomatic setback : The United Kingdom, the third permanent member of the UN Security Council, officially backed Morocco's autonomy plan for the Sahara. This major political shift drew a sharp and confused response from Algeria's Foreign Minister, Mohamed Attaf. CNSS hack —also linked to Jabaroot—which compromised the personal data of thousands of insured individuals, including their salary information.
Morocco World
4 days ago
- Politics
- Morocco World
Algerian ‘Jabaroot' Group Behind CNSS Breach Attacks Moroccan Property Registry
Doha – The Moroccan National Agency for Land Conservation, Cadastre and Cartography (ANCFCC) has become the latest victim of a major cyberattack claimed by 'Jabaroot,' the same hacker group behind April's CNSS breach. The group, which identifies itself as Algerian, announced the attack on Monday, allegedly resulting in the theft and subsequent leak of thousands of sensitive property documents. According to claims the group made on their Telegram channel, the hackers have exfiltrated and released what they describe as 'a massive amount of sensitive data' from ANCFCC's databases. The leaked information reportedly includes 10,000 property ownership certificates out of a total database of more than 10 million land titles. The compromised data allegedly contains cadastral information, property owner identities, real estate references, and various personal and administrative documents. These include approximately 20,000 various documents such as sales deeds, civil status documents, copies of ID cards, passports, and banking documents, amounting to approximately 4 terabytes of data. This cyberattack comes approximately two months after the same group claimed responsibility for hacking the National Social Security Fund (CNSS) database in April. That intrusion exposed personal data of nearly 2 million Moroccan employees across approximately 500,000 businesses registered with the CNSS. Immediately following that earlier breach, the land registry agency had temporarily suspended access to its online platform on April 14—particularly the service dedicated to notaries—and decided to close the platform entirely to all professionals and users, reverting to paper-based filing and in-person payments at physical counters using the old method. The agency had then urged all professionals—including notaries, lawyers, and users—to go directly to land registry agencies to process their filings and payments in person until further notice. An 'unjustified intervention' The Jabaroot group has justified this attack as a direct response to what they call 'Moroccan media's false propaganda' regarding rumors about France freezing assets belonging to high-ranking Algerian officials. 'These political tensions only concern France and Algeria,' the group stated, describing the alleged propaganda as 'an unjustified intervention and an opportunistic way to attack Algeria again on the international stage.' Some of the first documents published on the Telegram channel reportedly involve real estate transactions by high-profile Moroccan public figures. The hackers specifically claim to have released sensitive documents belonging to senior Moroccan officials, including what they allege are documents of Mohamed Yassine Mansouri, the director general of foreign intelligence. The group has made serious allegations that 'while the Moroccan people suffer from poverty and deprivation in various forms, Mansouri spent more than MAD 3.5 million ($350,000) between 2022 and 2023, and established companies in his daughter's name.' At the time of reporting, ANCFCC has not yet officially addressed the origin of these alleged leaks or the authenticity of the circulated documents. It remains unclear whether the method of intrusion into the land registry database is identical to the one used against the CNSS. Tags: Algerian hackersancfcccyberattack
Morocco World
09-04-2025
- Business
- Morocco World
CNSS: Documents from Cyberattack ‘Often False, Inaccurate or Truncated'
Doha – Morocco's National Social Security Fund (CNSS) revealed Wednesday that preliminary verification of documents leaked following a recent cyberattack shows they are 'often false, inaccurate or truncated,' as the institution grapples with what could be one of the country's most dangerous data breaches to date. In an official communiqué, the CNSS confirmed its computer system had been subjected to a series of cyberattacks aimed at circumventing security measures, resulting in a data leak whose 'origins and contours are currently being evaluated.' 'As soon as the data leak was observed, the IT security protocol was activated with corrective measures that contained the path used and strengthened infrastructures,' the CNSS stated, adding that measures have been implemented to precisely identify the affected data. The breach appears to be part of a broader cyber assault by an Algerian hacking group called 'Jabaroot,' which claimed to have exfiltrated approximately 500,000 records, including 54,000 PDF files containing sensitive information. The leaked documents allegedly include salary certificates, employee lists, and data concerning both public and private Moroccan companies. According to available information, the breach may have exposed personal data of nearly 2 million Moroccan employees across approximately 500,000 businesses registered with the CNSS. The leaked documents reportedly include salary attestations from various organizations, including the royal holding SIGER and the Israeli liaison office in Rabat. The cyberattack simultaneously targeted the Ministry of Economic Integration, Small Enterprise, Employment and Skills (MIEPEEC). Read also: Algerian Hackers Target Maroc Hebdo After Controversial Cover Story While the ministry initially downplayed the breach, stating that 'all information published on the site is public and accessible to all,' the hackers responded by releasing what they claim to be additional ministry payroll files in a 75 MB archive. The CNSS stressed that protecting personal data and user information confidentiality remains an 'absolute priority.' The institution has initiated an internal administrative investigation and notified relevant judicial authorities. 'We call on all citizens and media to exercise vigilance, demonstrate a sense of responsibility, and avoid any act of dissemination or sharing of leaked or falsified data at the risk of facing judicial consequences,' the CNSS communiqué concluded. The incident has prompted concerns from political figures, including Abdellah Bouanou, head of the Justice and Development Party's (PJD) parliamentary group, who has called for accountability and stronger cybersecurity measures across ministerial sectors and public institutions. The hackers claimed their actions were in retaliation for alleged 'Moroccan harassment of official Algerian social media pages,' specifically citing the suspension of the Algerian Press Service (APS) account on platform X. Reports indicate Moroccan hackers have launched counter-operations targeting Algerian government websites. Tags: Algerian hackerscyberattacksThe National Social Security Fund (CNSS)
Morocco World
08-04-2025
- Politics
- Morocco World
Algerian Hackers Target Moroccan Employment Ministry's Database
Doha – In a hostile cyber attack on Tuesday, an Algerian hacking group calling themselves 'Jabaroot' claimed responsibility for breaching the official website of Morocco's Ministry of Economic Integration, Small Enterprise, Employment and Skills. The group claimed in a statement that the attack was 'in response to Moroccan harassment of official Algerian social media pages.' Specifically, they cited the blocking of the Algerian Press Service (APS) account on platform X as their pretext for the cyber assault. The hostile actors published what they described as 'important data' on their Telegram channel, including what they claimed were 'salary declaration forms' of Moroccan employees. In addition, the attackers published a provocative map of North Africa that deliberately misrepresented Morocco's territorial integrity. Their misleading map portrayed the Western Sahara region as separate from Morocco, while labeling it with the separatist Polisario Front's self-proclaimed republic and showing northern Morocco under Algerian influence. Moroccan expert Hassan Kherjouj had issued an early warning about the affected Moroccan ministry's vulnerability to such an attack. In a Facebook post dated April 3, Kherjouj detailed specific technical issues related to the website's WordPress configuration files, particularly concerning the 'public_html/wp-includes/ file, which manages database interactions. In his technical analysis, he outlined three potential security scenarios: '1. SQL Injection Attacks, 2. File Modification (Backdoors & Malware), 3. Remote Code Execution.' He cautioned that 'the mere knowledge of the database file name is a serious issue in itself.' Algerian media outlets claimed that their hackers 'managed to publish millions of data points primarily related to Moroccan citizens' names and salaries,' including CNSS salary declaration certificates. The cyber attack has temporarily disrupted access to the ministry's digital platform, with Moroccan citizens reporting inability to access the website's services. Moroccan hackers have reportedly launched counter-operations 'targeting Algerian government websites, as well as websites belonging to the separatist Polisario Front.' As of press time, the ministry has not issued an official statement regarding the incident or verified the authenticity of the allegedly leaked data. The website remains suspended and inaccessible to users. Read also: Algerian Hacker Attacks Website of Morocco's Confederation of Enterprises Tags: Algerian hackersMorocco's Ministry of Employment
