Morocco is facing fresh cybersecurity concerns after reports that the Office of Vocational Training and Employment Promotion (OFPPT) may have suffered a large data breach.
On 12 April 2026, a hacker using the name “anisanas2” claimed to have stolen the organisation’s full database and put it up for sale online. To back up the claim, they shared a sample of 100,000 records. They say the full set contains more than 400,000 entries.
If true, this would affect almost all students registered with Morocco’s biggest public vocational training body.
🚨 NATIONAL SECURITY ALERT: MASSIVE LEAK OF EDUCATIONAL DATA (OFPPT – MOROCCO) 🇲🇦
The complete database of Morocco’s Office of Vocational Training and Employment Promotion (OFPPT), the country’s largest public technical training institution, has been detected being offered for… pic.twitter.com/mQ5Ho13l9o
— VECERT Analyzer (@VECERTRadar) April 12, 2026
What data may have been exposed?
The leaked data reportedly includes personal details like names, phone numbers and email addresses. It also contains academic information such as study fields, from IT and mechanics to tourism and construction, plus diploma levels. There are also details linked to more than 500 training centres across the country.
The Directorate General for Information Systems Security (DGSSI) and OFPPT have not confirmed the breach so far. Cybersecurity experts, however, say the risk is serious. The data could be used for scams, phishing attempts and identity theft.
A wider problem
The incident comes as Morocco continues to push ahead with its digital transformation plans, aiming to become a tech hub in Africa. But some experts say security systems are not keeping pace with the speed of digitisation.
The country’s cybersecurity market is expected to reach 157 million dollars in 2026, but many public bodies still rely on outdated or disconnected security systems. This creates gaps that attackers can exploit.
Not the first incident
This is not an isolated case. In 2025, the National Social Security Fund (CNSS) was hit by a major cyberattack that exposed data from around 2 million workers and 500,000 companies. That incident was linked to a group called “Jabaroot DZ”.
Authorities have also seen a rise in scams using stolen data. In 2024 and 2025, many people reported fake SMS messages about traffic fines. Investigators later found these scams were based on old leaked databases.
The alleged breach happened while Morocco was hosting global tech leaders at GITEX Africa, where the focus was on artificial intelligence and cloud technology.
