The Qilin ransomware group claims to have breached multiple organizations across the United States, Europe, and Canada. The group has listed these entities on their dark web leak site, threatening to release proprietary information. The latest list of alleged victims posted by the group includes:
-
Yellow Cab of Columbus (USA): A transportation and taxi service provider operating in Columbus, Ohio.
-
IES Synergy (France): An electronics manufacturer specializing in advanced charging solutions for electric vehicles.
-
CST Coal (Canada): A mining and business services company operating in Canada.
-
Mainetti UK (UK): The United Kingdom division of a global manufacturer known for retail solutions and packaging.
-
Numalliance (France): A French industrial machinery manufacturer specializing in wire and tube bending equipment.
-
City of Urbana (USA): The municipal government serving the City of Urbana, Ohio.
According to the actor, the compromise involves significant amounts of internal data. Screenshots provided by the group suggest the following types of information have been exfiltrated:
-
Financial Documents: Bank account details, borrowing facility agreements, and sales/order coverage reports.
-
Personal Identification Information (PII): Driver certifications, safety training records, and rosters containing names and contact details.
-
Corporate Data: Large data archives, including a claimed 138 GB of data from IES Synergy.
