فاس نيوز ميديا جريدة الكترونية جهوية تعنى بشؤون و أخبار جهة فاس مكناس – متجددة على مدار الساعة
Rabat – Cybersecurity experts, after extensive research and verification, have revealed that the narrative circulating about Algerian hackers breaching Moroccan online platforms is merely a “false flag operation” that lacks any digital forensics evidence or Indicators of Compromise (IOCs) to substantiate the claim.
The experts clarified that the actual breach targeted the Oracle Cloud IaaS environment as part of a coordinated campaign carried out by global threat actors classified as Advanced Persistent Threats (APTs), according to international threat intelligence reports from reputable organizations such as Group-IB and Recorded Future.
The same sources emphasized that it is unlikely that the leaked data belongs to Moroccan institutions, given the strict compliance with the Data Sovereignty Law under Decree No. 2.24.921, which prohibits the storage of sensitive data outside the Kingdom or on foreign cloud servers.
However, the experts did not theoretically rule out the possibility of an internal leak resulting from shortcomings in basic cybersecurity practices (cyber hygiene) or the presence of an insider threat within the Kingdom’s borders. Nevertheless, these hypotheses require an in-depth analysis of the attackers’ Tactics, Techniques, and Procedures (TTPs), which have not been observed so far.
In a related context, the experts accused Algerian entities of attempting to promote a cyberattack they did not carry out and seeking, through cyber psychological operations (cyber psyops), to exploit a global vulnerability to create a “phantom achievement” at the expense of Moroccan institutions that were not originally within the scope of the actual breach. The experts stressed the need to rely on facts and reliable technical evidence in such cases and to avoid being drawn into unsupported claims.
