Ransomware victim disclosure
← All victimsRita Võ Group
listed as ritavo.com · Claimed by Apt73 · listed 1 day ago
Status timeline
- ListedJul 2, 2026
- Data leakeddate unknown
At a glance
About the victim
AI dossier — public-source company profileRita Võ Group is a private Vietnamese multidisciplinary holding company operating multiple luxury and mid-market brands across furniture, home improvement, real estate development, fashion, automotive distribution, and hospitality. The group owns numerous subsidiary brands including Lux Hovo (premium home appliances), Rita Võ Wood (engineered wood surfaces), Rita Võ Plaza (luxury real estate), Rita Võ Homes (furniture distribution), and Rita Võ Fashion & Furniture (luxury fashion retail).
- Industry
- Luxury Goods & Diversified Holding (Furniture, Home Goods, Real Estate, Fashion, Automotive Distribution)
- Founded
- 2004
Attack summary
Severity: medium — Data has been published by the threat actor (data_published status), indicating confirmed exfiltration. However, no specific proof count, data inventory, or sensitive data categories are documented in the provided excerpt. The victim is a large diversified holding company, suggesting access to potentially significant business data, but without evidence of regulated/PII-at-scale exfiltration, severity is assessed as medium rather than high.The ransomware group apt73 claims to have compromised ritavo.com. The post indicates data exfiltration (disclosed_status: 'data_published'), but the truncated leak post and provided evidence do not specify the attack method, data types compromised, or ransom demand.
What the group claims
ritavo.com is the website of Rita Võ Group, a private multidisciplinary holding company from Vie...
Sources
Source
Indexed 1 day agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

