In a new leak shaking government websites, the “Jabroot” page on the Telegram app announced the leak of a massive database from the official Watiqa.ma platform belonging to the Moroccan government.
Details of the leaked data include 695,402 records in CSV format, encompassing sensitive personal information of platform users, including:
- The full name of the citizen
- The full name of the mother
- The full name of the father
- Date of birth
- Email address
- Phone number
- Residential address
- Birth certificate number
- Application number
- Civil status office
Document?
The ma platform (Watiqa.ma) is the official online window for the Moroccan government to request civil status documents remotely, such as birth certificates, official copies of birth records, civil registry documents, and some consular documents for Moroccans living abroad, raising concerns about their potential misuse that could harm the owners of this information.
Journalist Osama Al-Tawil
Journalist Osama Al-Tawil revealed that he is one of the affected individuals from this leak, stating that he received a call from someone with whom he has a limited relationship, but was surprised when they provided accurate information about his date and place of birth, before informing him that his name was among the leaked data.
Osama Al-Tawil threatened to not remain silent about the incident and demanded the public’s assistance in uncovering the identity of those behind the “Jabroot” page to take legal action against them.
He indicated that when he inquired about the responsible parties, fingers were pointed at Ilyas El Omari and Mehdi Hijawi.
Implications of the leak on citizens
This leak raises serious concerns regarding the protection of personal data, especially with the spread of risks related to electronic fraud, identity theft, and extortion.
Citizens who have used the platform are advised to activate security vigilance, monitor their bank accounts, and change their passwords.
No official statement has been issued by the concerned government authorities regarding the incident or the measures taken to investigate and enhance cybersecurity.
Jabroot
After hiding behind the Moroccan-Algerian conflict, “Jabroot” quickly revealed its inclinations, clearly indicating that those behind the leaks are Moroccan entities.
It is noteworthy that throughout the past months, several pages bearing the name “Jabroot” have leaked data, starting from April 2025, when data from the National Social Security Fund (CNSS) and the Ministry of Economic Inclusion were published, leaking information concerning more than 1.9 million employees and 500,000 Moroccan companies.
In June 2025, a breach of the National Agency for Land Conservation and Cadastre (ANCFCC) was announced, with 4 terabytes of real estate documents leaked, including certificates of ownership, sale contracts, and documents related to prominent figures.
Following this data, the pages, under the name “Jabroot”, began to play the role of TikToker Hicham Girando residing in Canada, by publishing questionable data aimed at provoking chaos without any purpose.
