Morocco: Digital Sovereignty: Morocco Should Embrace Cybersecurity as a Pillar of National Power

Morocco Faces Escalating Cyber Threats as Digital Transformation Accelerates

Morocco’s rapid digital transformation spanning e-government, financial services, smart infrastructure, and AI integration has expanded its cyberattack surface, exposing critical vulnerabilities. In the first half of 2025 alone, the country recorded 20.7 million cyberattack attempts, with 879 confirmed incidents, including 109 critical attacks targeting finance, telecommunications, public administration, and essential services, according to the Directorate General for Information Systems Security (DGSSI).

The threat landscape mirrors global trends, with attackers leveraging AI-driven phishing, ransomware, RDP exploitation, supply chain compromises, and cloud misconfigurations. These risks are not isolated but part of a structural, evolving challenge that threatens economic stability, institutional resilience, and national sovereignty. The $1.2 billion cybersecurity market in Morocco remains under pressure due to a projected shortfall of 3,800 professionals by 2026 and persistent vulnerabilities in third-party ecosystems, where weak credential governance and delayed patching often originate.

To counter these risks, experts recommend strengthening critical infrastructure protections, elevating cyber risk governance to ministerial levels, and fostering public-private threat intelligence sharing. Proposals include regular national cyber crisis simulations, mandatory third-party security audits, and the creation of a National Cyber Resilience Council to ensure cross-ministerial coordination. As digital infrastructure becomes synonymous with national security, Morocco’s ability to mitigate cyber threats will shape its economic sovereignty, institutional stability, and regional leadership ambitions through 2035.

Source: https://www.moroccoworldnews.com/2026/05/302904/digital-sovereignty-morocco-should-embrace-cybersecurity-as-a-pillar-of-national-power/

Morocco TPRM report: https://www.rankiteo.com/company/ministry-of-industry-investment-trade-and-digital-economy-morocco

"id": "min1779121869",
"linkid": "ministry-of-industry-investment-trade-and-digital-economy-morocco",
"type": "Cyber Attack",
"date": "5/2026",
"severity": "100",
"impact": "6",
"explanation": "Attack threatening the economy of geographical region"

{'affected_entities': [{'industry': ['e-government',
                                     'financial services',
                                     'telecommunications',
                                     'public administration',
                                     'essential services'],
                        'location': 'Morocco',
                        'type': 'Country'}],
 'attack_vector': ['AI-driven phishing',
                   'RDP exploitation',
                   'supply chain compromises',
                   'cloud misconfigurations'],
 'date_detected': '2025-06-30',
 'description': 'Morocco’s rapid digital transformation spanning e-government, '
                'financial services, smart infrastructure, and AI integration '
                'has expanded its cyberattack surface, exposing critical '
                'vulnerabilities. In the first half of 2025 alone, the country '
                'recorded 20.7 million cyberattack attempts, with 879 '
                'confirmed incidents, including 109 critical attacks targeting '
                'finance, telecommunications, public administration, and '
                'essential services.',
 'impact': {'operational_impact': 'Threatens economic stability, institutional '
                                  'resilience, and national sovereignty',
            'systems_affected': ['e-government',
                                 'financial services',
                                 'smart infrastructure',
                                 'telecommunications',
                                 'public administration',
                                 'essential services']},
 'lessons_learned': 'Morocco’s cybersecurity market faces a projected '
                    'shortfall of 3,800 professionals by 2026, and '
                    'vulnerabilities in third-party ecosystems (e.g., weak '
                    'credential governance and delayed patching) are '
                    'persistent risks.',
 'post_incident_analysis': {'root_causes': ['Rapid digital transformation '
                                            'expanding attack surface',
                                            'Shortfall of cybersecurity '
                                            'professionals',
                                            'Third-party ecosystem '
                                            'vulnerabilities']},
 'recommendations': ['Strengthening critical infrastructure protections',
                     'Elevating cyber risk governance to ministerial levels',
                     'Fostering public-private threat intelligence sharing',
                     'Regular national cyber crisis simulations',
                     'Mandatory third-party security audits',
                     'Creation of a National Cyber Resilience Council for '
                     'cross-ministerial coordination'],
 'references': [{'source': 'Directorate General for Information Systems '
                           'Security (DGSSI)'}],
 'title': 'Morocco Escalating Cyber Threats Amid Digital Transformation',
 'type': ['phishing',
          'ransomware',
          'RDP exploitation',
          'supply chain compromise',
          'cloud misconfiguration'],
 'vulnerability_exploited': ['weak credential governance', 'delayed patching']}