SEE MATPROOF ON YOUR STACK — BOOK A 30-MINUTE DEMO
BREACHransomwarelive18 Jul 2026

Ransomware: qilin claims Salina Supply (US) — Business Services

BREACH. Sourced from ransomwarelive, summarised by Matproof.

AI Analysis

What changed and what to do.

On 18 July 2026, a ransomware group known as Qilin publicly claimed responsibility for a cyberattack against Salina Supply, a US-based business services firm. The incident was published on the ransomware.live leak site, indicating that the attackers have likely exfiltrated sensitive data and are threatening to release it unless a ransom is paid. This event falls under the BREACH framework, which typically involves unauthorized access and data disclosure, triggering notification obligations under various data protection regulations.

This incident primarily affects organizations in the business services sector, particularly those operating in the United States, but it also serves as a warning for EU-based firms that handle cross-border data or have US subsidiaries. Any company relying on third-party vendors for supply chain, logistics, or administrative support should assess their exposure, as Qilin’s tactics often target smaller or mid-sized firms that may have weaker security postures. Compliance teams in sectors like logistics, procurement, and managed services should be especially vigilant.

Compliance teams should immediately review their incident response plans to ensure they include procedures for ransomware with data exfiltration. They must verify that breach notification timelines under GDPR, ePrivacy, or relevant US state laws are met if any EU personal data is involved. Additionally, teams should conduct a third-party risk assessment for any vendors similar to Salina Supply, reinforce employee training on phishing and credential theft, and ensure offline backups are current and tested. Proactive monitoring of threat intelligence feeds for Qilin indicators of compromise is also recommended.

This summary is AI-generated for orientation purposes. For regulatory action, always consult the original source linked above.

More BREACH updates

Latest in BREACH.

Live regulatory monitoring

Never miss a compliance update.

Get weekly digests of DORA, NIS2, GDPR, MaRisk, and ISO 27001 changes — straight to your inbox. Free.

No spam. Weekly digest only. Unsubscribe anytime.

DORANIS2GDPRMaRiskISO 27001

Map this to your controls

Connect regulatory changes to your compliance work.

Matproof maps every regulator update directly to your controls and surfaces the ones that affect your organisation — across 21 frameworks.