The ransomware group known as Qilin has allegedly updated its dark web leak site, claiming responsibility for attacks on 11 new victims spanning various sectors, including healthcare, government, technology, and manufacturing. The group has published the allegedly stolen data for each entity. The diverse list of targets underscores the opportunistic and far-reaching nature of modern ransomware-as-a-service (RaaS) operations, which impact organizations globally.
Among the more prominent victims is The Health Trust, a vital non-profit operating foundation serving Silicon Valley since 1996 by providing health-related grants and services. The attackers claim to have exfiltrated sensitive information that could severely impact the organization and its partners. Another significant target is the City of Belvedere, a small but affluent municipality in Marin County, California. An attack on a government body is particularly alarming, as the compromised data often contains confidential citizen and administrative information. Also listed is AccuVein, a global leader in medical vein imaging technology used in over 4,000 healthcare institutions worldwide.
The perpetrators have listed samples of the allegedly stolen data to validate their claims and pressure the victims into paying a ransom. For The Health Trust, the leak allegedly includes community support agreements and employee pay stubs. In the case of the City of Belvedere, the breach allegedly exposed police bulletins containing personal details and confidential legal correspondence. Data from AccuVein allegedly includes financial documents, patents, and bank statements. Other listed victims include technology integrators, commercial finance firms, and automotive suppliers from North America and Europe.
Allegedly Leaked Data Includes:
- 🇺🇸 The Health Trust: Community support agreements, itemized payment receipts, employee pay stubs, and FY 2025 budget summaries.
- 🇺🇸 City of Belvedere: Police bulletins with suspect information, confidential legal correspondence, and financial reconciliation reports.
- 🇺🇸 AccuVein Inc.: Company balance sheets, U.S. patent filings, bank statements, and service agreements.
- 🇺🇸 Bruckner’s Truck & Equipment: Vehicle transfer agreements, employee health insurance forms, and court-issued notices.
- 🇭🇰 AppoTech: Details not specified.
- 🇺🇸 Britten Inc.: City permits, equipment rental contracts, and certificates of liability insurance.
- 🇺🇸 Microman: Consolidated income statements, bank statements, and aged trial balances.
- 🇺🇸 Regents Capital: Client bank statements, share repurchase agreements, and solar power purchase agreements.
- 🇺🇸 ReGenerating Solutions: A U.S. passport, business correspondence, and personal financial statements.
- 🇮🇪 Frylite: Invoices, currency account revaluations, passports, and profit and loss statements.
- 🇨🇭 Golf & Country Club Schönenberg: Signed contracts, safety audit plans, and cooperation agreements.
