Who was responsible for the Moroccan data breach?

The Algerian hacker group JabaRoot DZ claimed responsibility for the attack.

What data was reportedly exposed in the National Social Security Fund (CNSS) breach?

According to initial analysis, the CNSS breach exposed an Excel file containing details on nearly 500,000 companies, approximately 53,576 PDF files, salary declaration certificates from various organizations, and lists of employees by name.

When did the Moroccan government data breach occur?

The attack occurred on April 8, 2025.

Incident

Algerian hacker group JabaRoot DZ launches cyberattack against Moroccan institutions

Q: Why did JabaRoot DZ attack Moroccan government websites?

The group described the attack as retaliation: 'This leak is a response to the hostile actions of Moroccan hackers who stole the Twitter account of the Algerian Press Service (APS) after it was banned by Twitter', connecting the attack with ongoing digital tensions between Algeria and Morocco.

Q: How did the CNSS respond to the attack?

CNSS stated that many of the documents posted were 'misleading, inaccurate, or incomplete.'

published: April 10, 2025

Learn More

On April 8, 2025, the Algerian hacker group JabaRoot DZ executed what experts are calling potentially "the largest data leak in Morocco's history," targeting key Moroccan government institutions. The cyberattacks primarily focused on the websites of the Ministry of Economic Inclusion and the National Social Security Fund (CNSS).

The group described the attack as retaliation: "This leak is a response to the hostile actions of Moroccan hackers who stole the Twitter account of the Algerian Press Service (APS) after it was banned by Twitter", connecting the attack with ongoing digital tensions between Algeria and Morocco.

The Ministry of Economic Inclusion confirmed its website was defaced by the hackers but attempted to downplay the severity of the breach, asserting: "No personal or sensitive data has been compromised." JabaRoot DZ quickly challenged this claim by publishing what appeared to be over 3,000 employee pay slips from the Ministry. The Ministry has denied the authenticity of these documents.

The more significant intrusion targeted Morocco's National Social Security Fund (CNSS), with far more serious implications. According to initial analysis, the breach exposed:

An Excel file containing details on nearly 500,000 companies
Approximately 53,576 PDF files
Salary declaration certificates from various organizations
Lists of employees by name

The total number of affected individuals and the nature of the attack is not disclosed.

The leaked data reportedly includes sensitive information from high-profile organizations including the royal holding SIGER, several banks, the Israeli Liaison Office in Morocco and multiple Moroccan media outlets. Some documents even revealed declared salaries of prominent individuals.

CNSS stated that many of the documents posted were "misleading, inaccurate, or incomplete."

Moroccan authorities are currently assessing the full extent of the breach and strengthening cybersecurity defenses to prevent future attacks.

Update - As of 11th of April 2025, Moroccan media reports that more than 54,000 files were allegedly stolen, exposing information on nearly 2 million people. The files, some of which date back to November 2024, included:

names,
national ID numbers,
company affiliations,
email addresses,
phone numbers,
bank account details.

Algerian hacker group JabaRoot DZ launches cyberattack against Moroccan institutions

Read More
San Joaquin County Superior Court suffering tech outage …
Mitchell County, North Carolina reports ransomware attack exposing …
French government unemployment aid agency reports Data breach, …
Cyberattacks cripple government services across Dutch Caribbean Islands
Indonesia’s e-visa system leaks personal data of tourists