Ransomware victim disclosure
← All victimsxChief
listed as XChief / ForexChief · Claimed by Killsecurity · listed 10 months ago
Status timeline
- ListedSep 28, 2025
- Data leakeddate unknown
At a glance
- Group
- Killsecurity
- Status
- Data leaked
- Country
- British Virgin Islands
- Sector
- Financial Services
- Listed on leak site
- Sep 28, 2025
About the victim
AI dossier — public-source company profilexChief (also known as ForexChief) is an online CFD and forex broker offering regulated trading via the MetaTrader platform, incorporated in the British Virgin Islands. The company provides retail and professional clients access to forex, indices, commodities, and other derivative instruments. It operates internationally under the domain xchief.com.
- Industry
- Online CFD & Forex Brokerage
Attack summary
Severity: high — The victim is a regulated online financial broker handling client trading accounts, funds, and personal financial data. A 'data_published' status in the financial services sector implies confirmed exfiltration of potentially sensitive customer financial and identity records, warranting a high severity rating even without explicit data inventory details.The Killsecurity ransomware group has disclosed xChief as a victim with a status of 'data_published', indicating that exfiltrated data has been released. No specific details about the nature of the data, encryption, or ransom demand were provided in the leak post.
What the group claims
N/A
Sources
- Victim sitexchief.com
Source
Indexed 10 months agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

