Cyber Incident Victim: Trevi
Date:
Jun 2026
Location:
Italy
Summary
Trevi, an Italian consumer electronics company, was identified as a recent victim of the Nova ransomware group, which compromised its official brand portal at trevi.it. The compromise was noted in the latest victim report, highlighting unauthorized access to the company's web portal. The listing appeared on a ransomware leak site that tracks recent victims.
| CIA Posture | Motives | Tactics, Techniques & Procedures |
|---|---|---|
| Available to members | 1 motive | 1 technique |
| Threat Actor | Type | Location |
|---|---|---|
| 1 actor | Available to members | Available to members |
Description
Trevi is an Italian consumer electronics company that operates the official brand portal at the domain trevi.it. This website serves as the primary online presence for the company’s product offerings and brand information. The trevi.it site is described in the source as the official brand portal for Trevi, indicating its importance to the company’s digital identity and customer engagement. As a consumer electronics firm, Trevi likely manages product catalogs, support resources, and e‑commerce functions through this portal. The company’s presence online is therefore a key component of its business operations and market reach.
On 2026‑06‑09, which was noted as “yesterday” relative to the article date of 2026‑06‑10, Trevi’s trevi.it website was discovered to be a victim of the Nova ransomware group. This discovery was recorded in the ransomware.live recent victims list, which tracks publicly reported ransomware incidents. The entry for Trevi includes the ransomware family name Nova and the timestamp of discovery. No further details about the attack vector, data exfiltration, ransom demand, or response measures are provided in the source material. The listing confirms that Trevi’s online portal was affected by Nova ransomware on the specified date.