[SAFEPAY] – Ransomware Victim: xortec[.]de

AI Generated Summary of the Ransomware Leak Page

On October 24, 2025, a ransomware leak post associated with the domain xortec.de was published. The page presents the victim as a German technology company that functions as a value-added distributor and systems integrator for professional video surveillance, IP network infrastructure, and security-technology solutions. The organization is described as headquartered in Frankfurt with branch offices in Hamburg, Munich, Regensburg, and Berlin, employing several dozen staff. The post references a 2021 majority-stake acquisition by a private equity firm and notes that the company’s turnover at that time was in the low-to-mid tens of millions of euros. It also states that revenue remains project-driven and scales with large installation contracts for public and private clients. In the absence of a stated compromise date in the data, the post date is used as the published date for this leak item.

The leak page notes that a claim URL is present, but there are no embedded images or downloadable content on the page. It provides a corporate background profile of the victim, including a current revenue figure of €7.5 million and details about the company’s size and market. The post does not clearly state whether encryption or data exfiltration occurred, nor does it provide any ransom amount in the available text. Overall, the page reads more like a business profile update than a conventional attack-and-extortion narrative, with no visible screenshots and no explicit breach details beyond the organizational context.