Retail trading platform XTB will reimburse clients who lost money in a recent cyberattack after a Polish investor claimed hackers stole 150,000 zł ($38,000). The company says the refunds won’t hurt its finances and promises tighter security.
Only 0.017% of XTB users were affected – none had two-factor authentication (2FA) enabled. The exact refund amount isn’t disclosed, but payouts will begin soon.
The decision follows public outcry after a victim shared how hackers manipulated low-liquidity trades to drain their account. XTB’s stock dropped 6% the day the story broke but rebounded slightly afterward.
Learn how to buy and sell popular assets with Top Forex broker XTB
Security upgrades coming
- Mandatory 2FA for Polish clients, rolling out soon in Czechia and Spain.
- App-based authentication (Google/Microsoft Authenticator) added in July.
- New features like remote logouts and suspicious activity monitoring in development.
XTB’s cybersecurity budget rose 48% this year, with further increases planned. Currently, only 10% of users use 2FA.
CEO Omar Arnaout emphasized trust, saying, “Clients should feel safe investing with XTB long-term.” The firm recently reported strong earnings, adding 361,000 new clients in Q2.
The move highlights growing cyber threats in finance – Poland saw 103,449 cyber incidents in 2024, up 29% from 2023.
