iscover
Share this article on:
Powered by
MOMENTUM
MEDIA
The hacking group has said it has stolen almost 30,000 files from Globelink International following an alleged December hack.
The Qilin ransomware-as-a-service operation has listed Australian freight forwarding firm Globelink International as a victim on its darknet leak site. It claims to have stolen 22 gigabytes of data.
According to the affiliate behind the attack, which posted about the incident on 23 December, 29,843 files were successfully exfiltrated from the company’s network.
“All data of this company will be available for download on 03.01.2025,” the affiliate said.
Unlike many of Qilin’s affiliates, this one has not shared any evidence of the hack. However, the data has been uploaded to Qilin’s FTP server as threatened. It includes details of the company’s debtors and creditors, bank statements, and other internal documents. Very little, if any, personal information appears to have been impacted, according to Cyber Daily’s initial analysis of the data.
Cyber Daily has reached out to Globelink International for comment but has yet to receive a reply.
The Qilin operation takes its name from a creature from Chinese myth, but members of the gang have been observed communicating in Russian on hacking forums when advertising their services. The group was first observed in August 2022 and has since then claimed 308 victims, making it one of the most active groups today.
The gang is perhaps best known for an attack on the UK-based pathology services provider Synnovis Group, which impacted five London hospitals in June 2024. The attack was declared a critical incident, with the NHS saying that “some operations and procedures which rely more heavily on pathology services have been postponed, and blood testing is being prioritised for the most urgent cases, meaning some patients have had phlebotomy appointments cancelled”.
Qilin’s most recent Australian victim was not-for-profit community support service Meli. In August of 2024, a Qilin affiliate claimed to have stolen 215 gigabytes of data from the organisation, totalling 419,617 files.
Globelink International has offices around Australia and is part of the wider Globelink International Group, which is headquartered in Singapore but has offices all over the world.
David Hollingworth has been writing about technology for over 20 years, and has worked for a range of print and online titles in his career. He is enjoying getting to grips with cyber security, especially when it lets him talk about Lego.
Be the first to hear the latest developments in the cyber industry.
