The Qilin ransomware group claims to have breached multiple organizations across the globe, adding a diverse range of companies to their dark web victim list. The threat actor, known for double-extortion tactics, has published the names and data previews of nine distinct entities.
The latest list of alleged victims posted by the group includes:
-
Brodosplit (🇭🇷): A major Croatian shipbuilding company known for designing and constructing heavy vessels.
-
LA Injury Attorneys (🇺🇸): A US-based legal firm specializing in personal injury litigation.
-
Moyes (🇺🇸): A global energy advisory and business consulting firm.
-
Oriental Castle Sdn Bhd (🇲🇾): A Malaysian company specializing in building materials and construction solutions.
-
Saca Industrie SpA (🇮🇹): An Italian manufacturer of furniture components, specifically for kitchens and living rooms.
-
EDIS (🇵🇱): A Polish company listed under business services.
-
GreenBest (🇬🇧): A UK-based manufacturer specializing in bespoke fertilizers and lawn care products.
-
VENZI & PAGANINI AG (🇨🇭): A Swiss wholesaler operating in the food and beverage sector.
-
Tlusty & Kennedy (🇺🇸): A US-based law firm providing legal services.
According to the actor, the compromised data varies by victim, with listing details showing significant file counts. The allegedly compromised data includes:
-
Internal company documents and files
-
Client and personal information (particularly concerning for the legal and medical sectors involved)
-
Financial records and invoices
-
Employee data
-
Extensive photo archives and scanned documents (specifically noted in the leak previews)
