CyberSecurityBoard
Sponsor Register Login

Qilin ransomware gang hits hundreds of orgs in 2025

The Qilin ransomware gang has emerged as a significant threat in 2025, targeting hundreds of organizations across various sectors. This ransomware group is known for its sophisticated attack methods and rapid expansion, causing substantial disruption and financial damage. Victims span multiple industries, highlighting the gang's broad targeting strategy and the urgent need for enhanced cybersecurity measures. Qilin ransomware operates by infiltrating networks through vulnerabilities and phishing campaigns, encrypting critical data, and demanding hefty ransoms for decryption keys. The gang's tactics include double extortion, where stolen data is threatened to be leaked if the ransom is not paid, increasing pressure on victims to comply. Security experts emphasize the importance of proactive defense strategies, including regular software updates, employee training on phishing awareness, and robust incident response plans. Organizations are also encouraged to maintain offline backups and implement network segmentation to mitigate the impact of potential breaches. Law enforcement and cybersecurity communities are actively tracking Qilin's activities, sharing intelligence to disrupt their operations and protect potential targets. The rise of Qilin ransomware underscores the evolving landscape of cyber threats and the critical need for coordinated defense efforts globally.

This Cyber News was published on therecord.media. Publication date: Tue, 28 Oct 2025 18:20:22 +0000


Cyber News related to Qilin ransomware gang hits hundreds of orgs in 2025

10 Best Ransomware Protection Tools - 2025 - It protects devices from ransomware and other cyber threats using advanced threat intelligence, behavioral analysis, and cloud-based technology. It monitors and prevents ransomware assaults on personal files and automatically restores encrypted ...
8 months ago Cybersecuritynews.com
10 Best Ransomware File Decryptor Tools in 2025 - Kaspersky Rakhni Decryptor contains different decryption tools based on various versions of Rakhni ransomware and helps you decrypt encrypted files on your system. PyLocky Ransomware Decryption Tool is a free and open source developed and released by ...
7 months ago Cybersecuritynews.com
Linux version of Qilin ransomware focuses on VMware ESXi - A sample of the Qilin ransomware gang's VMware ESXi encryptor has been found and it could be one of the most advanced and customizable Linux encryptors seen to date. Due to this adoption, almost all ransomware gangs have created dedicated VMware ESXi ...
1 year ago Bleepingcomputer.com Qilin
Qilin ransomware gang hits hundreds of orgs in 2025 - The Qilin ransomware gang has emerged as a significant threat in 2025, targeting hundreds of organizations across various sectors. This ransomware group is known for its sophisticated attack methods and rapid expansion, causing substantial disruption ...
2 weeks ago Therecord.media Qilin ransomware gang
Latest Information Security and Hacking Incidents - The ransomware strain Qilin has surfaced as a new danger to computers using VMware ESXi, which is a recent development in the cryptocurrency space. Concerned observers have expressed concern over the fact that this Qilin Linux version exhibits a ...
1 year ago Cysecurity.news Qilin
Qilin ransomware claims attack on automotive giant Yanfeng - The Qilin ransomware group has claimed responsibility for a cyber attack on Yanfeng Automotive Interiors, one of the world's largest automotive parts suppliers. Yanfeng is a Chinese automotive parts developer and manufacturer focused on interior ...
1 year ago Bleepingcomputer.com Qilin Black Basta
Qilin Has Emerged as The Top Ransomware Group in April with 74 Cyber Attacks - In a significant shift within the cybercriminal ecosystem, Qilin ransomware group has surged to prominence in April 2025, orchestrating 74 cyber attacks globally according to the latest threat intelligence report. This dramatic rise follows the ...
6 months ago Cybersecuritynews.com Ransomhub Qilin
Qilin Emerged as The Most Active Group, Exploiting Unpatched Fortinet Vulnerabilities - Cyber Security News - The group’s recent campaign has primarily leveraged critical vulnerabilities in Fortinet’s enterprise security appliances, specifically targeting CVE-2024-21762 and CVE-2024-55591 in unpatched FortiGate and FortiProxy devices. The ...
4 months ago Cybersecuritynews.com CVE-2024-21762 LockBit Qilin
The Week in Ransomware - Earlier this month, the BlackCat/ALPHV ransomware operation suffered a five-day disruption to their Tor data leak and negotiation sites, rumored to be caused by a law enforcement action. The FBI revealed this week that they hacked the BlackCat/ALPHV ...
1 year ago Bleepingcomputer.com LockBit Akira Noescape
The Week in Ransomware - Today's column brings you two weeks of information on the latest ransomware attacks and research after we skipped last week's article. BleepingComputer has learned that some of the BlackCat/ALPHV affiliates are not buying the explanation and have ...
1 year ago Bleepingcomputer.com LockBit Qilin Noescape
Qilin Ransomware Gain Traction Following Legal Assistance Option for Ransomware Affiliates - Qilin’s legal department offers what the gang describes as comprehensive support services, including legal evaluations of potential damages, assessments of stolen data, and direct negotiation capabilities with victim organizations. The ...
3 months ago Cybersecuritynews.com Qilin
Qilin ransomware gang alleged to be Asahi hackers - The Qilin ransomware gang has been identified as the group behind the Asahi cyberattacks, marking a significant development in the cybersecurity landscape. This revelation links the notorious Qilin ransomware operators to the sophisticated Asahi ...
1 month ago Therecord.media Qilin ransomware gang Asahi hackers
The Week in Ransomware - This week was pretty quiet on the ransomware front, with most of the attention on the seizure of the BreachForums data theft forum. That does not mean there was nothing of interest released this week about ransomware. A report by CISA said that the ...
1 year ago Bleepingcomputer.com LockBit Inc ransom Black Basta
The Top 10 Ransomware Groups of 2023 - This article takes an in-depth look at the rise in ransomware attacks over the past year and the criminal groups driving the surge in cyber extortion. LockBit has established itself as one of the most notorious ransomware operations since emerging on ...
1 year ago Securityboulevard.com TA505 8base LockBit BianLian Medusa Noescape Black Basta
Hive Ransomware: A Detailed Analysis - This past week, on January 26th, to be exact, the FBI successfully shut down the Hive ransomware group and saved victims over a hundred million dollars in ransom payments and remediation costs. As ransomware continues to be a national security threat ...
2 years ago Heimdalsecurity.com LockBit
The Week in Ransomware - An international law enforcement operation claims to have dismantled a ransomware affiliate operation in Ukraine, which was responsible for attacks on organizations in 71 countries. The threat actors are said to be affiliates of numerous ransomware ...
1 year ago Bleepingcomputer.com Qilin Cactus Black Basta
Waiting for the BlackCat rebrand - We saw another ransomware operation shut down this week after first getting breached by law enforcement and then targeting critical infrastructure, putting them further in the spotlight of the US government. While the Tor onion domain seizure was a ...
1 year ago Bleepingcomputer.com Medusa Cuba STORMOUS
Microsoft: North Korean hackers join Qilin ransomware gang - Microsoft says Moonstone Sleet hackers are targeting both financial and cyberespionage targets using trojanized software (e.g., PuTTY), custom malware loaders, malicious games and npm packages, and fake software development companies (e.g., C.C. ...
8 months ago Bleepingcomputer.com Qilin
Researchers link 3AM ransomware to Conti, Royal cybercrime gangs - Security researchers analyzing the activity of the recently emerged 3AM ransomware operation uncovered close connections with infamous groups, such as the Conti syndicate and the Royal ransomware gang. The 3AM ransomware gang's activity was first ...
1 year ago Bleepingcomputer.com Blacksuit LockBit Threeam
Ransomware Roundup - The Ransomware Roundup report aims to provide readers with brief insights into the evolving ransomware landscape and the Fortinet solutions that protect against those variants. This edition of the Ransomware Roundup covers the 8base ransomware. 8base ...
1 year ago Feeds.fortinet.com 8base
Medusa Ransomware Turning Your Files into Stone - Unit 42 Threat Intelligence analysts have noticed an escalation in Medusa ransomware activities and a shift in tactics toward extortion, characterized by the introduction in early 2023 of their dedicated leak site called the Medusa Blog. The Unit 42 ...
1 year ago Unit42.paloaltonetworks.com Medusa
Ransomware Operations Surge Following Qilin's New Pattern of Attacks - The cybersecurity landscape witnessed a dramatic shift in June 2025 as the Qilin ransomware group emerged as the dominant threat actor, orchestrating an unprecedented surge in high-value targeted attacks across multiple sectors and geographical ...
4 months ago Cybersecuritynews.com Qilin Ransomhub
Ransomware's Impact May Include Heart Attacks, Strokes & PTSD - First-order harms: Direct targets of ransomware attacks. The increasing convergence of IT and OT leave physical infrastructures more vulnerable to ransomware, even though most ransomware operators lack the capability to directly compromise OT or ...
1 year ago Techrepublic.com
Cal Club ransomware attack hits California golf club in San Francisco, Qilin claims responsibility - A ransomware attack has targeted a prestigious golf club in San Francisco, California, known as Cal Club. The cybercriminal group Qilin has claimed responsibility for this incident, highlighting the ongoing threat ransomware poses to private and ...
1 month ago Cybernews.com Qilin

Latest Cyber News


Cyber Trends (last 7 days)


Trending Cyber News (last 7 days)