Cyber threats are reaching an alarming new level in Morocco. Over the first half of 2025 alone, the country was hit with more than 20.7 million attempted cyberattacks, according to figures shared in Rabat during the 2025 KNext event, hosted by cybersecurity firm Kaspersky and supported by the Ministry of Digital Transition and Administrative Reform.
Moroccan businesses are now squarely in the crosshairs. As cloud adoption accelerates, industrial automation becomes more widespread, and online financial services gain ground, the attack surface has expanded dramatically. What’s especially troubling is that hackers are no longer just going after data—they’re targeting the operational core of organizations, threatening business continuity and undermining public trust.
Between January and June this year, Kaspersky’s telemetry recorded nearly 15 million local threats, 6 million web-based attacks, and close to 800,000 attempts to exploit software vulnerabilities. Credential theft surged 22 percent compared to last year, and spyware attacks followed a similar trend. Meanwhile, over 2 million Remote Desktop Protocol (RDP) intrusion attempts were logged, along with the installation of 8,000 backdoors allowing attackers to silently infiltrate systems.
What’s especially concerning is the profile of the recent victims. Both public institutions and strategically important private companies have come under attack, signaling a shift in the cybercriminals’ strategy. Rather than random or opportunistic hits, these are calculated strikes aimed at Morocco’s economic backbone.
This escalating threat landscape validates the urgency behind Morocco’s 2030 National Cybersecurity Strategy, developed by the Directorate General for Information Systems Security. The strategy focuses on four key pillars: governance, resilience of cyberspace, skills development, and international cooperation. The long-term goal is to secure Morocco’s technological sovereignty and establish the country as a key cybersecurity player in the region.
In the face of this growing danger, Kaspersky is calling for a unified response. The company emphasizes the need for stronger monitoring of industrial systems, tighter access controls, more robust data backup protocols, and ongoing employee training—particularly around phishing tactics and social engineering schemes. Without these efforts, Morocco’s digital future could be at serious risk.
