Connect with us

Hi, what are you looking for?



Interpol: Moroccan Citizen Arrested for Website Defacements, Other Cybercrimes

Authorities have arrested a Moroccan citizen believed to have orchestrated cyberattacks against over one hundred websites, in addition to engaging in various other nefarious activities.

Authorities have arrested a Moroccan citizen believed to have orchestrated cyberattacks against over one hundred websites, in addition to engaging in various other nefarious activities.

Operating under the online moniker Dr HeX, the individual is believed to have defaced more than 130 websites between 2009 and 2018. Furthermore, he is believed to have targeted several French telecommunications companies to steal credit card data.

According to an investigation from Singapore-based cybersecurity firm Group-IB, the individual, who has not been named, was likely involved in a multitude of malicious activities, including malware development, phishing, fraud, and carding.

In addition to modifying the appearance and content of numerous websites, Interpol says, the threat actor also targeted banks and multinational companies with malware. Overall, he is believed to have targeted thousands of victims.

With the help of phishing kits that impersonated online banking portals, he and other cybercriminals stole sensitive information and defrauded unsuspecting victims.

The Moroccan Police arrested the individual in May, following a two-year investigation – dubbed Operation Lyrebird – that saw participation from Interpol and Group-IB.

“This is a significant success against a suspect who is accused of targeting unsuspecting individuals and companies across multiple regions for years, and the case highlights the threat posed by cybercrime worldwide,” Stephen Kavanagh, Interpol Executive Director of Police Services, said.

Advertisement. Scroll to continue reading.

Group-IB identified the alleged hacker based on email addresses, nicknames, and accounts on online services such as Facebook, Instagram, Skype, and YouTube.

Related: Nigerian Arrested in US for Hacking Payroll Services Company

Related: Kenyan Arrested in Qatar First Targeted by Phishing Attack

Related: Police in Europe Bust Gang Hijacking Celeb Phones, Arrest 10

Written By

Ionut Arghire is an international correspondent for SecurityWeek.

Click to comment

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

SecurityWeek’s Threat Detection and Incident Response Summit brings together security practitioners from around the world to share war stories on breaches, APT attacks and threat intelligence.


Securityweek’s CISO Forum will address issues and challenges that are top of mind for today’s security leaders and what the future looks like as chief defenders of the enterprise.


Expert Insights

Related Content


The changing nature of what we still generally call ransomware will continue through 2023, driven by three primary conditions.


Luxury retailer Neiman Marcus Group informed some customers last week that their online accounts had been breached by hackers.


As it evolves, web3 will contain and increase all the security issues of web2 – and perhaps add a few more.


A recently disclosed vBulletin vulnerability, which had a zero-day status for roughly two days last week, was exploited in a hacker attack targeting the...


Satellite TV giant Dish Network confirmed that a recent outage was the result of a cyberattack and admitted that data was stolen.


Zendesk is informing customers about a data breach that started with an SMS phishing campaign targeting the company’s employees.

Artificial Intelligence

The release of OpenAI’s ChatGPT in late 2022 has demonstrated the potential of AI for both good and bad.

Artificial Intelligence

The degree of danger that may be introduced when adversaries start to use AI as an effective weapon of attack rather than a tool...