Latest news with #ANCFCC
Morocco World
3 days ago
- Politics
- Morocco World
DGSSI: Data Breach Affected Only Tawtik Platform Used by Notaries
Doha – The General Directorate of Information Systems Security (DGSSI) has concluded its investigation into the recent data breach initially reported on June 2. According to an official statement released on Friday, the compromised data originated exclusively from the platform, which is used by the National Council of Notaries. The DGSSI has clarified that contrary to earlier reports, the systems of the National Agency for Land Conservation, Cadastre and Cartography (ANCFCC) were not compromised. This statement aims to dispel confusion about the scope of the incident that has concerned users since reports first emerged. As an immediate response, authorities took the platform offline to identify and address the security vulnerabilities that led to the data exfiltration. 'Exploiting vulnerabilities in inadequately protected computers' Enhanced security measures have been implemented in accordance with DGSSI cybersecurity recommendations, with additional proactive actions deployed to prevent future incidents. The incident gained attention when the Algerian hacking group 'Jabaroot' claimed responsibility for the attack on June 2. The group alleged they had stolen approximately 10,000 property ownership certificates, 20,000 personal documents including sales deeds, civil status documents, ID cards, passports, and banking records. They claimed the breach amounted to 4 terabytes of data. This attack follows a similar breach in April when the same group targeted Morocco's National Social Security Fund (CNSS), exposing personal data of nearly 2 million Moroccan employees across approximately 500,000 businesses. The CNSS later stated that many of the leaked documents were 'often false, inaccurate or truncated.' Sources from ANCFCC had previously denied that their systems were directly compromised. As reported by Le360, an authorized source from the agency stated that no intrusion or data leak was detected in their information system. The source suggested the hackers may have accessed data on the notaries' platform by 'exploiting vulnerabilities in inadequately protected computers.' The Jabaroot group justified their attack as a response to what they called 'Moroccan media's false propaganda' regarding rumors about France freezing assets belonging to high-ranking Algerian officials. They described this alleged propaganda as 'an unjustified intervention and an opportunistic way to attack Algeria again on the international stage.' Morocco faces growing cybersecurity threats Documents leaked by the group reportedly included sensitive information of Moroccan officials. The group specifically claimed to have released documents belonging to senior officials, including alleged documents of Mohamed Yassine Mansouri, the director general of foreign intelligence. Cybersecurity experts have warned citizens not to open any of the leaked files circulating online, as they may contain security threats that could compromise personal data. This incident occurs amid increasing cybersecurity concerns in Morocco. In April, cybersecurity company Kaspersky reported that Morocco ranks third among African countries facing web-based threats, with 12.6 million attack attempts documented in 2024. Kenya leads with nearly 20 million incidents, followed by South Africa with approximately 17 million. A string of recent cyberattacks targeting Moroccan institutions has exposed serious gaps in the country's digital defenses. Between June 1 and June 3, 2025, multiple attacks targeted various Moroccan institutions, including the Ministry of Health, Bank Al-Maghrib, Maroc Telecom, and several educational institutions. Read also: Transparency Maroc: CNSS Data Breach Exposes Critical Flaws in Morocco's Cybersecurity Tags: Algerian hackersancfcccyberattack
Ya Biladi
03-06-2025
- Politics
- Ya Biladi
Morocco : Jabaroot DZ leak was a hit on notaries, not the land registry
DR Initially reported as a hack of the National Agency for Land Conservation, Cadastre, and Cartography (ANCFCC) by Jabaroot DZ, the data leak appears to have actually originated from the notaries' platform, as revealed by our colleagues at Le Desk. When contacted by Yabiladi, a cybersecurity expert explained that the breach came from the Tawtik information system, managed by the National Council of the Order of Notaries. In fact, the leaked documents relate to transactions processed through notaries, and no land titles are included. These are not just property deeds but also powers of attorney and company formation records, which fall outside the scope of the ANCFCC's responsibilities. «It's also worth noting that the leak concerns only the documents available on Tawtik at a specific point in time, not all notarial acts», the expert added. It is therefore unlikely that the volume of pirated data amounts to 4 terabytes, as claimed by Jabaroot DZ. As mentioned earlier, the leak of personal data—targeting figures such as Nasser Bourita, the Minister of Foreign Affairs, and Yassine Mansouri, the head of Morocco's external intelligence agency (DGED)—coincides with the UK's formal support for Morocco's autonomy plan for the Sahara. This appears to be a diversion orchestrated by Algiers. The diplomatic shake-up in London likely explains the confused statement issued last night by Ahmed Attaf, Algeria's Foreign Minister, as well as the convoluted justifications from Jabaroot DZ about the freezing of Algerian dignitaries' assets by French authorities.
Morocco World
02-06-2025
- Politics
- Morocco World
Algerian ‘Jabaroot' Group Behind CNSS Breach Attacks Moroccan Property Registry
Doha – The Moroccan National Agency for Land Conservation, Cadastre and Cartography (ANCFCC) has become the latest victim of a major cyberattack claimed by 'Jabaroot,' the same hacker group behind April's CNSS breach. The group, which identifies itself as Algerian, announced the attack on Monday, allegedly resulting in the theft and subsequent leak of thousands of sensitive property documents. According to claims the group made on their Telegram channel, the hackers have exfiltrated and released what they describe as 'a massive amount of sensitive data' from ANCFCC's databases. The leaked information reportedly includes 10,000 property ownership certificates out of a total database of more than 10 million land titles. The compromised data allegedly contains cadastral information, property owner identities, real estate references, and various personal and administrative documents. These include approximately 20,000 various documents such as sales deeds, civil status documents, copies of ID cards, passports, and banking documents, amounting to approximately 4 terabytes of data. This cyberattack comes approximately two months after the same group claimed responsibility for hacking the National Social Security Fund (CNSS) database in April. That intrusion exposed personal data of nearly 2 million Moroccan employees across approximately 500,000 businesses registered with the CNSS. Immediately following that earlier breach, the land registry agency had temporarily suspended access to its online platform on April 14—particularly the service dedicated to notaries—and decided to close the platform entirely to all professionals and users, reverting to paper-based filing and in-person payments at physical counters using the old method. The agency had then urged all professionals—including notaries, lawyers, and users—to go directly to land registry agencies to process their filings and payments in person until further notice. An 'unjustified intervention' The Jabaroot group has justified this attack as a direct response to what they call 'Moroccan media's false propaganda' regarding rumors about France freezing assets belonging to high-ranking Algerian officials. 'These political tensions only concern France and Algeria,' the group stated, describing the alleged propaganda as 'an unjustified intervention and an opportunistic way to attack Algeria again on the international stage.' Some of the first documents published on the Telegram channel reportedly involve real estate transactions by high-profile Moroccan public figures. The hackers specifically claim to have released sensitive documents belonging to senior Moroccan officials, including what they allege are documents of Mohamed Yassine Mansouri, the director general of foreign intelligence. The group has made serious allegations that 'while the Moroccan people suffer from poverty and deprivation in various forms, Mansouri spent more than MAD 3.5 million ($350,000) between 2022 and 2023, and established companies in his daughter's name.' At the time of reporting, ANCFCC has not yet officially addressed the origin of these alleged leaks or the authenticity of the circulated documents. It remains unclear whether the method of intrusion into the land registry database is identical to the one used against the CNSS. Tags: Algerian hackersancfcccyberattack
