Safepay Hacks Xortec, Threatens Security Supply Chain

The Safepay ransomware group has claimed responsibility for breaching Xortec GmbH, a German provider of professional video surveillance and security solutions. As part of the attack, the group listed the company on its data leak site and set a ransom deadline for October 27, 2025. The incident, titled “Safepay Hacks Xortec,” could pose significant risks to the broader security infrastructure ecosystem.

Xortec, based in Frankfurt with offices across Germany, supplies surveillance cameras, network video recorders, access control systems, and cabling to enterprise customers. Its client base includes system integrators, resellers, and installers across the DACH region and global markets. The breach could compromise surveillance layouts, client data, and device firmware. If Safepay Hacks Xortec infrastructure, it may impact logistics and resellers, potentially disrupting critical sectors like utilities and transport.

The Safepay group emerged in late 2024 and uses double extortion tactics to target industries worldwide.

Safepay ransomware group claims the hack of professional video surveillance provider Xortec