Menu
Browse

Cyber Threat Actor: Jabaroot DZ

Actor Type Location Known Incidents
 Icon
Activist
Algeria
2 incidents
Profile

Jabaroot DZ, also observed using the variant spelling JabaRoot DZ, is an Algerian‑based hacking group that has claimed responsibility for cyber operations against Moroccan public sector entities. The group’s location is identified as Algeria, and it operates under the aliases noted in open‑source reporting. No further structural details such as size, hierarchy, or funding sources are provided in the available material.

The group’s targeting appears focused on governmental and social service institutions within Morocco, specifically the Caisse Nationale de Sécurité Sociale (CNSS) and the Ministry of Economic Inclusion, Small Business, Employment, and Skills. In the CNSS incident the actors asserted that the operation aimed to destabilize and divert attention, indicating a disruption‑oriented objective. The ministry attack was similarly claimed by the group, although the victim organization reported that only publicly accessible information was affected and assessed the incident as having no significant consequences, suggesting the intent was to cause disturbance rather than to extract financial gain or conduct espionage. No explicit statements regarding financial profit, intelligence collection, or other motives are present in the sources.

The reported incidents describe a cyber intrusion that compromised databases and a separate action targeting an informational portal, but the sources do not specify any particular malware families, initial access vectors, or tooling styles employed by Jabaroot DZ. Consequently, no detailed TTP themes can be extracted from the provided information. Likewise, there is no publicly asserted connection to a state sponsor or a criminal consortium, so attribution beyond the group’s self‑identification remains unspecified. The two highlighted operations—the large‑scale CNSS breach affecting nearly two million workers and hundreds of thousands of enterprises, and the claimed intrusion against the Moroccan ministry’s portal—represent the group’s known public campaigns as documented in the available reporting.

Incidents
Attributed incidents available to members
2 incidents
Sources
Sources available to members
0 sources