Ransomware victim disclosure
← All victimsfecovita.com
Claimed by J · listed 1 year ago
Status timeline
- ListedJun 21, 2025
- Data leakeddate unknown
At a glance
About the victim
AI dossier — public-source company profileFecovita is Argentina's largest wine cooperative and exporter, comprising over 5,000 farmers integrated across 29 cooperatives managing approximately 25,000 hectares of vineyards in Mendoza's primary wine regions. The organization produces and exports wines ranging from premium to table varieties to over 20 countries worldwide.
- Industry
- Wine Production & Export
- Address
- Carril Gómez 265, Maipú (M5511HTE), Mendoza, Argentina
- Employees
- 5000
- Founded
- 1991
Attack summary
Severity: medium — Data published status confirmed but no proof count, data inventory, or exfiltration details specified in the post excerpt. The victim is a major agricultural exporter with significant operational footprint, suggesting potential business data exposure, but evidence is insufficient to confirm critical data types (PII at scale, financial records, or regulated information).Group J claims to have attacked Fecovita; the leak post indicates data has been published, though specific details on encryption status, data exfiltration scope, or proof materials are not provided in the available excerpt.
Original description
AI-summarised, not from the leak postFecovita is Argentina's largest wine co-operative and exporter, representing over 29 co-operative wineries. Founded in 1991, the company is made up of 5,000 farmers who together own 25% of the vineyards of the province of Mendoza. They produce a wide range of wines, from premium to everyday table wines, which they export to over 20 countries around the world.
Sources
Source
Indexed 1 year agoThis page surfaces a public ransomware disclosure indexed by Darkfield. Original posts come from the operator's own leak site; we cross-check against ransomware.live, RansomLook and RansomWatch where applicable. Share this URL freely.
Is this your supplier? Your competitor? You?
Pro plans monitor your domain, corporate emails, and crypto wallets across every new ransomware leak-site post, breach dump and Telegram callout — alerts within 5 minutes.

