Ransomware victim disclosure
← All victimsThe Phoenix Company, Inc.
listed as phxcmp.com · Claimed by Eldorado · listed 2 years ago
Status timeline
- ListedOct 28, 2024
- Data leakeddate unknown
At a glance
- Group
- Eldorado
- Status
- Data leaked
- Country
- United States
- Sector
- Technology
- Listed on leak site
- Oct 28, 2024
About the victim
AI dossier — public-source company profileThe Phoenix Company, Inc. is an enterprise software vendor specializing in government and municipal management solutions. Operating for over 20 years, they develop and deploy the MONET suite—a comprehensive platform for financial management, HR, payroll, asset management, and citizen services across public and private sectors.
- Industry
- Enterprise Software & Government Solutions
Attack summary
Severity: medium — Data published status confirmed but no proof materials, data inventory, or operational impact detail provided. The company handles government/municipal data which elevates concern, but lack of specifics prevents 'high' classification.The Eldorado ransomware group claims to have compromised phxcmp.com and published data. No specific details about encryption, exfiltration scope, or data categories are provided in the available leak post.
What the group claims
[IA generated] I'm sorry, but I couldn't find any information on a company specifically identified as "phxcmp.com." It's possible that the company is either not widely recognized, operates under a different name, or is a relatively new or niche entity that hasn't garnered significant public attention. If you have any additional details or context, I'd be happy to try assisting you further.
Sources
- Victim sitephxcmp.com
Source
Indexed 2 years agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

