Ransomware: qilin claims Roth Industries (DE) — Manufacturing

On June 19, 2026, a ransomware group known as Qilin publicly claimed responsibility for a cyberattack against Roth Industries, a German manufacturing firm. The incident was published on the ransomware group’s leak site, indicating that sensitive data may have been exfiltrated and is at risk of exposure. This event falls under the BREACH framework, which typically requires mandatory reporting under EU data protection and cybersecurity regulations, including GDPR and NIS2.

The primary affected organization is Roth Industries, a manufacturing company based in Germany. However, the broader manufacturing sector across the EU should take note, as ransomware groups increasingly target industrial firms for their operational criticality and potential supply chain leverage. Any EU-based manufacturer that processes personal data or operates critical infrastructure may face similar threats and regulatory scrutiny.

Compliance teams should immediately verify whether their organization has any data-sharing or supply chain links with Roth Industries and assess potential third-party risk. They should also review their incident response plans to ensure they align with NIS2’s 24-hour notification requirements for significant incidents. Finally, teams should reinforce employee training on phishing and ransomware vectors, and confirm that offline backups are tested and secure.