XP Inc.
Company Details
Linkedin ID:
xpinc
Employees number:
12,572
Number of followers:
711,096
NAICS:
52
Industry Type:
Homepage:
xpinc.com
IP Addresses:
0
Company ID:
XP _1273892
Scan Status:
In-progress
XP Inc. Company CyberSecurity Posture
xpinc.com
A XP Inc. é uma das maiores instituições financeiras independente do Brasil, dona das marcas XP, Rico, Clear, XP Educação, InfoMoney, entre outras. Com mais de 4,6 milhões de clientes ativos e um valor superior a R$ 1,3 trilhão de ativos sob custódia, há 24 anos vem transformando o mercado financeiro para melhorar a vida das pessoas. Foi pioneira no mercado com sua rede de assessores de investimentos, que hoje é a maior do país, com mais de 18,3 mil profissionais. Com uma cultura marcante guiada por quatro valores - Sonho Grande, Espírito Empreendedor, Foco no Cliente e Mente Aberta - a XP Inc. está sempre em busca dos melhores talentos que tem ambição de fazer o impossível.
XP Inc. A.I CyberSecurity Scoring
XP Inc. Risk Score (AI oriented)Between 750 and 799
XP Inc.
Updated:
- Powered by our proprietary A.I cyber incident model
- Insurance preferes TPRM score to calculate premium
XP Inc. Global Score (TPRM)XXXX
XP Inc.
- Instant access to detailed risk factors
- Benchmark vs. industry & size peers
- Vulnerabilities
- Findings
XP Inc. Company CyberSecurity News & History
Past Incidents
0
Attack Types
0
No data available
XP Inc. Company Scoring based on AI Models
Cyber Incidents Likelihood 3 - 6 - 9 months
A.I Risk Score Likelihood 3 - 6 - 9 months
Underwriter Stats for XP Inc.
Incidents vs Financial Services Industry Average (This Year)
No incidents recorded for XP Inc. in 2026.
Incidents vs All-Companies Average (This Year)
No incidents recorded for XP Inc. in 2026.
Incident Types XP Inc. vs Financial Services Industry Avg (This Year)
No incidents recorded for XP Inc. in 2026.
Incident History — XP Inc. (X = Date, Y = Severity)
XP Inc. cyber incidents detection timeline including parent company and subsidiaries
XP Inc. Company Subsidiaries
A XP Inc. é uma das maiores instituições financeiras independente do Brasil, dona das marcas XP, Rico, Clear, XP Educação, InfoMoney, entre outras. Com mais de 4,6 milhões de clientes ativos e um valor superior a R$ 1,3 trilhão de ativos sob custódia, há 24 anos vem transformando o mercado financeiro para melhorar a vida das pessoas. Foi pioneira no mercado com sua rede de assessores de investimentos, que hoje é a maior do país, com mais de 18,3 mil profissionais. Com uma cultura marcante guiada por quatro valores - Sonho Grande, Espírito Empreendedor, Foco no Cliente e Mente Aberta - a XP Inc. está sempre em busca dos melhores talentos que tem ambição de fazer o impossível.
Loading...
XP Inc. Similar Companies
Wells Fargo
Wells Fargo & Company (NYSE: WFC) is a diversified, community-based financial services company with approximately $1.9 trillion in assets. Wells Fargo’s vision is to satisfy our customers’ financial needs and help them succeed financially. Founded in 1852 and headquartered in San Francisco, Wells Fa
BNY
For more than 240 years BNY has partnered alongside clients, using its expertise and platforms to help them operate more efficiently and accelerate growth. Today BNY serves over 90% of Fortune 100 companies and nearly all the top 100 banks globally. BNY supports governments in funding local projects
Swedbank
Since 1820, Swedbank has been the bank for the many households and businesses. We are a modern financial services platform focused on customer satisfaction. Our goal is to encourage people to save for a better future, and we aim to help people, businesses and society to grow by promoting a healthy a
Lincoln Financial
Lincoln Financial (NYSE: LNC) helps people to confidently plan for their version of a successful future. We focus on identifying a clear path to financial security, with products including annuities, investments, life insurance, group protection, and retirement plan services. With our 120-year trac
Merrill Lynch
Founded in 1914, Merrill is one of the largest wealth management businesses in the world. Merrill financial advisors combine financial knowledge and experience with a deep understanding of their clients’ needs to help their clients pursue the lives they want. With a deep commitment to placing their
Sanlam
We’ve finally given a name to that special something a person exudes when they have a plan for their finances. It’s called The F Factor – and now that you know its name, it’s time you feel it too. Let's unlock your financial confidence, together. Our team is online weekdays 8:30 – 16:00
S&P Global (NYSE: SPGI) enables businesses, governments, and individuals with trusted data, expertise and technology to make decisions with conviction. We are Advancing Essential Intelligence through world-leading benchmarks, data, and insights that customers need in order to plan confidently, act d
Nomura
Nomura is a financial services group with an integrated global network. By connecting markets East & West, Nomura services the needs of individuals, institutions, corporates and governments through its four business divisions: Wealth Management, Investment Management, Wholesale (Global Markets and I
TIAA
At TIAA, we believe everyone has the right to retire with dignity. For more than 100 years, we’ve provided retirement plans, insurance, and investment services, empowering millions of people— in education, healthcare, and nonprofit —with the knowledge, guidance, and lifetime income needed to plan th
.png)
XP Inc. CyberSecurity News
January 14, 2026 10:53 AM
XP Inc. (NASDAQ:XP) is a favorite amongst institutional investors who own 71%
Key Insights Given the large stake in the stock by institutions, XP's stock price might be vulnerable to their trading...
January 02, 2026 08:00 AM
Here is Why XP Inc. (XP) is Favored by Hedge Funds
XP Inc. (NASDAQ:XP) is one of the best financial pure plays under $100 according to hedge funds. On December 12, Bank of America analyst...
December 28, 2025 08:00 AM
Is XP Inc. (XP) One of the Best Affordable Stocks to Buy?
XP Inc. (NASDAQ:XP) is one of the Best Affordable Stocks to Buy According to Analysts. On December 16, Thiago Batisita from UBS maintained a...
December 18, 2025 08:00 AM
Here’s Why BofA Has a Hold Rating on XP Inc. (XP)
XP Inc. (NASDAQ:XP) is one of the Undervalued Stocks with Biggest Upside Potential. On December 12, Mario Pierry from Bank of America...
November 26, 2025 08:00 AM
XP Inc. (XP) Approves Capital Distribution Following Revenue and Earnings Growth
XP Inc. (NASDAQ:XP) is a must-buy non-tech stock to invest in. On November 17, XP Inc. (NASDAQ:XP) reiterated its commitment to returning...
October 30, 2025 07:00 AM
Suspected Chinese snoops weaponize unpatched Windows flaw to spy on European diplomats
Cyber spies linked to the Chinese government exploited a Windows shortcut vulnerability disclosed in March – but that Microsoft hasn't fixed...
October 18, 2025 07:00 AM
While shareholders of XP (NASDAQ:XP) are in the red over the last five years, underlying earnings have actually grown
Generally speaking long term investing is the way to go. But no-one is immune from buying too high. To wit, the XP Inc...
August 18, 2025 07:00 AM
Top Stocks With Earnings This Week: Baidu, XPeng And More - Palo Alto Networks (NASDAQ:PANW)
Investors are gearing up for another week of earnings reports, and some retail-investor favorites are part of the line-up.
August 13, 2025 07:00 AM
XP vs. SOFI: Which Stock Is the Better Value Option?
Investors with an interest in Financial - Miscellaneous Services stocks have likely encountered both XP Inc.A (XP) and SoFi Technologies,...
Frequently Asked Questions
Explore insights on cybersecurity incidents, risk posture, and Rankiteo's assessments.
XP Inc. CyberSecurity History Information
Official Website of XP Inc.
The official website of XP Inc. is https://www.xpinc.com/carreiras/#/.
XP Inc.’s AI-Generated Cybersecurity Score
According to Rankiteo, XP Inc.’s AI-generated cybersecurity score is 791, reflecting their Fair security posture.
How many security badges does XP Inc.’ have ?
According to Rankiteo, XP Inc. currently holds 0 security badges, indicating that no recognized compliance certifications are currently verified for the organization.
Has XP Inc. been affected by any supply chain cyber incidents ?
According to Rankiteo, XP Inc. has not been affected by any supply chain cyber incidents, and no incident IDs are currently listed for the organization.
Does XP Inc. have SOC 2 Type 1 certification ?
According to Rankiteo, XP Inc. is not certified under SOC 2 Type 1.
Does XP Inc. have SOC 2 Type 2 certification ?
According to Rankiteo, XP Inc. does not hold a SOC 2 Type 2 certification.
Does XP Inc. comply with GDPR ?
According to Rankiteo, XP Inc. is not listed as GDPR compliant.
Does XP Inc. have PCI DSS certification ?
According to Rankiteo, XP Inc. does not currently maintain PCI DSS compliance.
Does XP Inc. comply with HIPAA ?
According to Rankiteo, XP Inc. is not compliant with HIPAA regulations.
Does XP Inc. have ISO 27001 certification ?
According to Rankiteo,XP Inc. is not certified under ISO 27001, indicating the absence of a formally recognized information security management framework.
Industry Classification of XP Inc.
XP Inc. operates primarily in the Financial Services industry.
Number of Employees at XP Inc.
XP Inc. employs approximately 12,572 people worldwide.
Subsidiaries Owned by XP Inc.
XP Inc. presently has no subsidiaries across any sectors.
XP Inc.’s LinkedIn Followers
XP Inc.’s official LinkedIn profile has approximately 711,096 followers.
NAICS Classification of XP Inc.
XP Inc. is classified under the NAICS code 52, which corresponds to Finance and Insurance.
XP Inc.’s Presence on Crunchbase
No, XP Inc. does not have a profile on Crunchbase.
XP Inc.’s Presence on LinkedIn
Yes, XP Inc. maintains an official LinkedIn profile, which is actively utilized for branding and talent engagement, which can be accessed here: https://www.linkedin.com/company/xpinc.
Cybersecurity Incidents Involving XP Inc.
As of January 21, 2026, Rankiteo reports that XP Inc. has not experienced any cybersecurity incidents.
Number of Peer and Competitor Companies
XP Inc. has an estimated 30,814 peer or competitor companies worldwide.
XP Inc. CyberSecurity History Information
How many cyber incidents has XP Inc. faced ?
Total Incidents: According to Rankiteo, XP Inc. has faced 0 incidents in the past.
What types of cybersecurity incidents have occurred at XP Inc. ?
Incident Types: The types of cybersecurity incidents that have occurred include .
Incident Details
What are the most common types of attacks the company has faced ?
Additional Questions
.png)
Latest Global CVEs (Not Company-Specific)
Description
SummaryA command injection vulnerability (CWE-78) has been found to exist in the `wrangler pages deploy` command. The issue occurs because the `--commit-hash` parameter is passed directly to a shell command without proper validation or sanitization, allowing an attacker with control of `--commit-hash` to execute arbitrary commands on the system running Wrangler. Root causeThe commitHash variable, derived from user input via the --commit-hash CLI argument, is interpolated directly into a shell command using template literals (e.g., execSync(`git show -s --format=%B ${commitHash}`)). Shell metacharacters are interpreted by the shell, enabling command execution. ImpactThis vulnerability is generally hard to exploit, as it requires --commit-hash to be attacker controlled. The vulnerability primarily affects CI/CD environments where `wrangler pages deploy` is used in automated pipelines and the --commit-hash parameter is populated from external, potentially untrusted sources. An attacker could exploit this to: * Run any shell command. * Exfiltrate environment variables. * Compromise the CI runner to install backdoors or modify build artifacts. Credits Disclosed responsibly by kny4hacker. Mitigation * Wrangler v4 users are requested to upgrade to Wrangler v4.59.1 or higher. * Wrangler v3 users are requested to upgrade to Wrangler v3.114.17 or higher. * Users on Wrangler v2 (EOL) should upgrade to a supported major version.
Risk Information
cvss4
Base: 7.7
Severity: LOW
CVSS:4.0/AV:N/AC:L/AT:P/PR:L/UI:N/VC:H/VI:H/VA:H/SC:L/SI:L/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X
Description
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are 7.1.14 and 7.2.4. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products (scope change). Successful attacks of this vulnerability can result in takeover of Oracle VM VirtualBox. CVSS 3.1 Base Score 8.2 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H).
Risk Information
cvss3
Base: 8.2
Severity: LOW
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
Description
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are 7.1.14 and 7.2.4. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products (scope change). Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Oracle VM VirtualBox accessible data as well as unauthorized access to critical data or complete access to all Oracle VM VirtualBox accessible data and unauthorized ability to cause a partial denial of service (partial DOS) of Oracle VM VirtualBox. CVSS 3.1 Base Score 8.1 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:L).
Risk Information
cvss3
Base: 8.1
Severity: LOW
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:L
Description
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are 7.1.14 and 7.2.4. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products (scope change). Successful attacks of this vulnerability can result in takeover of Oracle VM VirtualBox. CVSS 3.1 Base Score 8.2 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H).
Risk Information
cvss3
Base: 8.2
Severity: LOW
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
Description
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that are affected are 7.1.14 and 7.2.4. Easily exploitable vulnerability allows high privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products (scope change). Successful attacks of this vulnerability can result in takeover of Oracle VM VirtualBox. CVSS 3.1 Base Score 8.2 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H).
Risk Information
cvss3
Base: 8.2
Severity: LOW
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
Access Data Using Our API
Get company history
curl -i -X GET 'https://api.rankiteo.com/underwriter-getcompany-history?linkedin_id=xpinc' -H 'apikey: YOUR_API_KEY_HERE'
RapidWhat Do We Measure ?
Incident
Finding
Grade
Digital Assets
Every week, Rankiteo analyzes billions of signals to give organizations a sharper, faster view of emerging risks. With deeper, more actionable intelligence at their fingertips, security teams can outpace threat actors, respond instantly to Zero-Day attacks, and dramatically shrink their risk exposure window.
These are some of the factors we use to calculate the overall score:
Network Security
Identify exposed access points, detect misconfigured SSL certificates, and uncover vulnerabilities across the network infrastructure.
SBOM (Software Bill of Materials)
Gain visibility into the software components used within an organization to detect vulnerabilities, manage risk, and ensure supply chain security.
CMDB (Configuration Management Database)
Monitor and manage all IT assets and their configurations to ensure accurate, real-time visibility across the company's technology environment.
Threat Intelligence
Leverage real-time insights on active threats, malware campaigns, and emerging vulnerabilities to proactively defend against evolving cyberattacks.
Rankiteo is a unified scoring and risk platform that analyzes billions of signals weekly to help organizations gain faster, more actionable insights into emerging threats. Empowering teams to outpace adversaries and reduce exposure.
