Moroccan Businesses Face Growing Cyber Threats as Digital Transformation Accelerates
As Moroccan companies intensify their digital transformation – adopting cloud services, industrial automation, and online financial services – they are facing an increasing cyber threat that no longer just targets data, but directly affects business continuity and customer trust. The 2025 edition of KNext Rabat, organized today by Kaspersky under the auspices of the Ministry of Digital Transition and Administrative Reform, reveals that Kaspersky's telemetry detected over 20.7 million attempted attacks in Morocco in the first half of 2025. These figures highlight the magnitude of the challenge faced by local businesses.
A Rapidly Evolving Threat
According to analyses from the Kaspersky Security Network (KSN), Morocco recorded between January and June 2025:
- Nearly 15 million local threats
- Almost 6 million attacks related to internet usage
- 800,000 attacks exploiting software vulnerabilities ("exploits")
- 390,000 attempts to steal identities using "stealers"
- 8,000 backdoors implanted remotely
- 2.1 million RDP attacks
- 230,000 detections of spyware
Beyond the volumes, the trends are alarming: the increase in identity theft (+22%) and spyware (+22%) compared to the first half of 2024 illustrates the willingness of cybercriminals to directly target businesses and their employees, particularly in the banking, industrial, and telecommunications sectors.
These figures remind us of the importance of a solid cybersecurity posture, supported by adapted tools and constant vigilance.
Recent Incidents Highlight the Urgency
These figures echo the cyber incidents that have occurred in recent months, affecting both public institutions and major economic players. These attacks demonstrate that Moroccan businesses are no longer just collateral victims: they are now strategic targets for malicious groups determined to exploit the slightest vulnerability in information systems.
A National Cybersecurity Strategy
It is in this context that the National Cybersecurity Strategy 2030, published by the General Directorate of Information System Security (DGSSI) under the National Defense Administration, is being implemented. This strategy sets the roadmap for the Kingdom for the next few years around four pillars: national cybersecurity governance, cybersecurity and resilience of the cyber space, development of skills, and international cooperation. It aims to make Morocco a regional reference actor in digital security, while supporting technological sovereignty and trust in the digital economy.
The vision carried by the DGSSI is in line with Kaspersky's findings: in the face of increasingly sophisticated threats, the response must be collective, coordinated, and anticipatory.
A Collective and Strategic Response
In response to this reality, Kaspersky calls on Moroccan businesses to adopt a proactive approach, combining advanced technologies, adapted governance, and continuous training. The recommendations shared during KNext Rabat 2025 emphasize several levers of action:
- Deploying specialized cybersecurity solutions, offering complete visibility into industrial systems and critical entry points
- Implementing a rigorous policy for managing access to internal resources and industrial interfaces
- Performing regular and distributed backups of data and operational configurations
- Strengthening employee training and awareness against phishing, social engineering, and targeted compromise threats
- Relying on trusted partners to support audits, continuous monitoring, and incident response
This approach, based on prevention and collaboration, is fully in line with national orientations. It highlights that cybersecurity is not an isolated issue, but a transversal pillar of Morocco's digital and economic development.
"For Moroccan businesses, cybersecurity is no longer a technical constraint, it's a strategic challenge. Recent incidents show that operational survival, reputation, and customer trust depend directly on the ability to protect themselves. Anticipating, understanding, and organizing resilience is the only way to transform cybersecurity into a sustainable competitiveness lever," says Samy Tadjine, Head of Major Accounts at Kaspersky.
