Ransomware victim disclosure
← All victimsKering (Gucci, Balenciaga, Brioni, AlexMcQ)
Claimed by Hunters International · listed 9 months ago
Status timeline
- ListedOct 3, 2025
- Data leakeddate unknown
At a glance
- Status
- Data leaked
- Country
- France
- Sector
- Consumer Services
- Listed on leak site
- Oct 3, 2025
About the victim
AI dossier — public-source company profileKering is a French multinational luxury group headquartered in Paris, France, that owns and develops a portfolio of prestigious fashion and lifestyle houses including Gucci, Balenciaga, Brioni, and Alexander McQueen. The group operates across clothing, leather goods, footwear, and accessories markets worldwide. Kering is listed on Euronext Paris and is one of the largest luxury conglomerates globally by revenue.
- Industry
- Luxury Goods & Fashion
- Address
- 40 Rue de Sèvres, 75007 Paris, France
- Employees
- 40000
- Founded
- 1963
Attack summary
Severity: high — Kering is a major multinational luxury corporation whose compromise likely involves significant volumes of confidential business, financial, and potentially employee/customer data across multiple globally recognised brands; data has been published rather than merely listed.Hunters International claims to have compromised Kering and has published data as of the disclosed status. The specific nature of the exfiltrated data is not detailed in the leak post, but the disclosure status indicates data has been published.
Data the group says was taken
AI dossier — extracted from the leak post- Corporate business data
- Potentially brand-level operational files
- Potentially employee or customer records
Original description
AI-summarised, not from the leak postKering is a global luxury group that manages the development of renowned houses in fashion, such as Gucci, Balenciaga, Brioni, and Alexander McQueen. These brands are popular in clothing, leather goods, footwear, and accessories sector. Kering, based in Paris, France, empowers its brands to reach their potential in the most imaginative and sustainable manner.
Source
Indexed 9 months agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

