On 18 July 2026, a ransomware group known as Krybit claimed responsibility for a cyberattack against Euroins Bulgaria, a major non-life insurer operating in the financial services sector. The claim…
Ransomware: qilin claims Sicc (IT) — Not Found
BREACH. Sourced from ransomwarelive, summarised by Matproof.
AI Analysis
What changed and what to do.
A new ransomware incident has been published on the ransomware.live leak site, attributed to the Qilin ransomware group, targeting Sicc, an Italian IT services company. The breach was listed on July 18, 2026, under the BREACH framework, indicating that the threat actor has claimed responsibility and likely exfiltrated data. No specific details about the data compromised or ransom demands have been disclosed, but the publication confirms a successful attack.
Organizations in the Italian IT services sector, particularly those with supply chain dependencies on Sicc, are directly affected. Any company that relied on Sicc for managed services, cloud infrastructure, or data processing should assess potential downstream exposure. The broader EU IT services sector should treat this as a warning, as Qilin is known for targeting critical infrastructure and service providers to amplify impact.
Compliance teams should immediately verify whether their organization or any third-party vendors have a relationship with Sicc. If so, initiate incident response protocols, including isolating affected systems and reviewing data access logs. Under the EU’s NIS2 Directive and GDPR, this incident may trigger mandatory breach notification obligations within 72 hours. Teams should also update their ransomware risk assessments and ensure backup integrity is tested, as Qilin often targets backups to increase leverage.
This summary is AI-generated for orientation purposes. For regulatory action, always consult the original source linked above.
More BREACH updates
Latest in BREACH.
On 18 July 2026, a ransomware group known as "nova" claimed responsibility for an attack on FMZ Tecnologia em Sistemas, a Brazilian technology firm. The claim was published on the ransomware.live…
As a senior EU regulatory compliance analyst, I summarize the following regulatory-relevant event: On 18 July 2026, the ransomware group Qilin publicly claimed responsibility for a cyberattack…
On 18 July 2026, a ransomware group known as Qilin publicly claimed responsibility for a cyberattack against Salina Supply, a US-based business services firm. The incident was published on the…
Map this to your controls
Connect regulatory changes to your compliance work.
Matproof maps every regulator update directly to your controls and surfaces the ones that affect your organisation — across 21 frameworks.