{
	"id": "777e2553-7912-4846-9ef8-e0d3d5c240ee",
	"created_at": "2026-04-06T00:09:14.053924Z",
	"updated_at": "2026-04-10T03:21:32.557811Z",
	"deleted_at": null,
	"sha1_hash": "9c423632b01bce70f9dcc3f31a60535766ba4367",
	"title": "RansomEXX ransomware leaks files stolen from Italian luxury brand Zegna",
	"llm_title": "",
	"authors": "",
	"file_creation_date": "0001-01-01T00:00:00Z",
	"file_modification_date": "0001-01-01T00:00:00Z",
	"file_size": 303731,
	"plain_text": "RansomEXX ransomware leaks files stolen from Italian luxury\r\nbrand Zegna\r\nBy Pierluigi Paganini\r\nPublished: 2021-08-06 · Archived: 2026-04-05 17:52:31 UTC\r\nRansomEXX ransomware operators hit the popular Italian luxury fashion house\r\nErmenegildo Zegna Holding and started leaking stolen files.\r\nZegna is one of the most famous Italian luxury fashion houses. It was founded in 1910 by Ermenegildo\r\nZegna in Trivero, Biella Province of the Piedmont region of Northern Italy.\r\nErmenegildo Zegna Group is the largest menswear brand in the world by revenue. As of 2018, Ermenegildo Zegna\r\noperated 480 retail stores (267 of which company-owned) across the world. Following the company’s strongly\r\nexport-oriented strategy, exports account for over 90% of total sales.\r\nThe revenge of the company was €1.159 billion as 2018.\r\nThe RansomEXX ransomware group claims to have stolen 20.74GB of data from the company and leaked 43\r\narchives (42 archives of 500MB in size and 1 archive containing 239.54MB of documents).\r\nhttps://securityaffairs.co/wordpress/120898/data-breach/ransomexx-ransomware-zegna.html\r\nPage 1 of 2\n\nThe RansomEXX gang has been active since 2018 under the name Defray, in June 2020 the group rebranded as\r\nRansomEXX. The RansomEXX ransomware targets both Windows systems and virtual machines running\r\nVMware ESXi servers.\r\nRecently the RansomEXX gang infected the systems at Italy’s Lazio region causing problems for the ongoing\r\nCOVID19 vaccination campaign. This week the ransomware gang RansomEXX ransomware gang hit the\r\nTaiwanese manufacturer and distributor of computer hardware GIGABYTE and claims to have stolen 112GB of\r\ndata.\r\nFollow me on Twitter: @securityaffairs and Facebook\r\n[adrotate banner=”9″] [adrotate banner=”12″]\r\nPierluigi Paganini\r\n(SecurityAffairs – hacking, Zegna)\r\n[adrotate banner=”5″]\r\nSource: https://securityaffairs.co/wordpress/120898/data-breach/ransomexx-ransomware-zegna.html\r\nhttps://securityaffairs.co/wordpress/120898/data-breach/ransomexx-ransomware-zegna.html\r\nPage 2 of 2",
	"extraction_quality": 1,
	"language": "EN",
	"sources": [
		"ETDA"
	],
	"references": [
		"https://securityaffairs.co/wordpress/120898/data-breach/ransomexx-ransomware-zegna.html"
	],
	"report_names": [
		"ransomexx-ransomware-zegna.html"
	],
	"threat_actors": [],
	"ts_created_at": 1775434154,
	"ts_updated_at": 1775791292,
	"ts_creation_date": 0,
	"ts_modification_date": 0,
	"files": {
		"pdf": "https://archive.orkl.eu/9c423632b01bce70f9dcc3f31a60535766ba4367.pdf",
		"text": "https://archive.orkl.eu/9c423632b01bce70f9dcc3f31a60535766ba4367.txt",
		"img": "https://archive.orkl.eu/9c423632b01bce70f9dcc3f31a60535766ba4367.jpg"
	}
}