In June 2014, Rex Mundi — a cybercriminal extortion group known for targeting European companies — compromised Domino’s Pizza France and Belgium’s online ordering systems and threatened to publish 592,000 French and 58,000 Belgian customer records unless Domino’s paid €30,000 in ransom. Domino’s refused to pay. Rex Mundi published the data online. Exposed data included customer names, email addresses, phone numbers, addresses, and delivery notes (which sometimes contained home access codes or detailed instructions). The fact that delivery instructions often include sensitive information (door codes, home access details, notes about when people are home) made this breach particularly concerning for physical security. The CNIL (French data protection authority) opened an investigation. Domino’s faced regulatory scrutiny and civil complaints from affected customers. Rex Mundi conducted similar attacks against other European companies including Hacking Team (ironically, a surveillance software maker), Marvel, ING Belgium, and Ubisoft. Rex Mundi’s extortion model — steal data, demand payment, publish when refused — became a template for later ransomware and extortion groups. The core members of Rex Mundi were subsequently identified and arrested by French and Belgian authorities.