Ransomware victim disclosure
← All victimsCadorim
Claimed by Killsecurity · listed 10 months ago
Status timeline
- ListedSep 22, 2025
- Data leakeddate unknown
At a glance
- Group
- Killsecurity
- Status
- Data leaked
- Country
- Belgium
- Listed on leak site
- Sep 22, 2025
- Data size
- 600 GB
About the victim
AI dossier — public-source company profileCadorim is a digital remittance platform operating primarily from Belgium and France, specialising in money transfers to Mauritania for the African diaspora in Europe. Founded in 2008, the service offers SEPA instant transfers, multiple cash-out methods (mobile wallets such as Bankily, Masrvi, Sedad, and cash pickup), transparent fee and exchange-rate display, and real-time transfer tracking. The platform serves thousands of diaspora members and reports a 4.7/5 rating based on over 1,200 verified reviews.
- Industry
- International Money Transfer & Remittance Services
- Founded
- 2008
Attack summary
Severity: high — Cadorim handles regulated financial transactions and holds sensitive PII including customer identities, beneficiary bank details, and transaction histories. A confirmed data-published status by the threat actor implies exfiltration of financial and personal data at scale, warranting a high severity rating. It does not reach critical only because no explicit confirmation of the volume of regulated records (e.g. AML/KYC files) has been provided in the post.KillSecurity claims to have attacked Cadorim and lists the disclosure status as 'data_published', indicating data has been exfiltrated and published; however, the group's leak post contains no detail on the volume or nature of data stolen.
Data the group says was taken
AI dossier — extracted from the leak post- Customer personal data (names, phone numbers, email addresses)
- Beneficiary financial details (bank account / RIB information)
- Transaction records
- KYC / identity verification data
- Account credentials
What the group claims
N/A
The leak post
captured from the group's siteFounded in 1997, iCare Software, based in the United States, delivers innovative management solutions for childcare and afterschool programs. Serving childcare centers, preschools, afterschool programs, and multi-site operations, iCare automates critical tasks like attendance tracking, staff scheduling, tuition collection, and compliance reporting. Its unique offerings include AI-driven analytics, business intelligence dashboards, and CRM tools to boost enrollment and staff retention. With seamless data migration and robust back-end technology, iCare empowers providers to focus on quality care while streamlining operations and driving growth. Cadorim simplifies money transfers to Mauritania, offering a secure, user-friendly platform for individuals and businesses. With a focus on speed, affordability, and accessibility, Cadorim enables seamless transactions in just three clicks, available around the clock. The company ensures maximum security for every transfer, provides competitive exchange rates with no fees, and processes transactions instantly. Headquartered in Brussels, Belgium, with operations in Nouakchott, Mauritania, Cadorim serves customers seeking reliable, cost-effectiv…
Sources
- Victim sitecadorim.com
Source
Indexed 10 months agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

