On 18 July 2026, a ransomware group known as Krybit claimed responsibility for a cyberattack against Euroins Bulgaria, a major non-life insurer operating in the financial services sector. The claim…
Ransomware: qilin claims Salina Supply (US) — Business Services
BREACH. Sourced from ransomwarelive, summarised by Matproof.
AI Analysis
What changed and what to do.
On 18 July 2026, a ransomware group known as Qilin publicly claimed responsibility for a cyberattack against Salina Supply, a US-based business services firm. The incident was published on the ransomware.live leak site, indicating that the attackers have likely exfiltrated sensitive data and are threatening to release it unless a ransom is paid. This event falls under the BREACH framework, which typically involves unauthorized access and data disclosure, triggering notification obligations under various data protection regulations.
This incident primarily affects organizations in the business services sector, particularly those operating in the United States, but it also serves as a warning for EU-based firms that handle cross-border data or have US subsidiaries. Any company relying on third-party vendors for supply chain, logistics, or administrative support should assess their exposure, as Qilin’s tactics often target smaller or mid-sized firms that may have weaker security postures. Compliance teams in sectors like logistics, procurement, and managed services should be especially vigilant.
Compliance teams should immediately review their incident response plans to ensure they include procedures for ransomware with data exfiltration. They must verify that breach notification timelines under GDPR, ePrivacy, or relevant US state laws are met if any EU personal data is involved. Additionally, teams should conduct a third-party risk assessment for any vendors similar to Salina Supply, reinforce employee training on phishing and credential theft, and ensure offline backups are current and tested. Proactive monitoring of threat intelligence feeds for Qilin indicators of compromise is also recommended.
This summary is AI-generated for orientation purposes. For regulatory action, always consult the original source linked above.
More BREACH updates
Latest in BREACH.
On 18 July 2026, a ransomware group known as "nova" claimed responsibility for an attack on FMZ Tecnologia em Sistemas, a Brazilian technology firm. The claim was published on the ransomware.live…
As a senior EU regulatory compliance analyst, I summarize the following regulatory-relevant event: On 18 July 2026, the ransomware group Qilin publicly claimed responsibility for a cyberattack…
On 18 July 2026, a ransomware group known as Qilin publicly claimed responsibility for a cyberattack against St. Martha Catholic Church in the United States, a consumer-facing religious organization.…
Map this to your controls
Connect regulatory changes to your compliance work.
Matproof maps every regulator update directly to your controls and surfaces the ones that affect your organisation — across 21 frameworks.