[QILIN] – Ransomware Victim: CHDFS

AI Generated Summary of the Ransomware Leak Page

CHDFS Inc. is identified as a ransomware leak victim on a post attributed to the threat group Qilin. CHDFS is described as a social services provider offering programs such as OPWDD, OMH, Early Intervention, and Health Home Care Management. Although the industry field is not populated in the entry, the description places CHDFS within the social services sector. The post date, treated as the publish date for the leak entry, is October 22, 2025. The page presents the incident as a data-leak scenario, indicating that CHDFS’s data has been exfiltrated and could be released publicly in line with double-extortion patterns. There is no explicit ransom amount stated in the available text, but the leak page clearly frames a data-leak event rather than a standard encryption kill. A claim URL is noted on the page, suggesting a public-facing link to corroborate the breach or access claimed data.

The leak page includes three images, described only in general terms as screenshots of internal documents. The body excerpt references a TOX hash-like value and an FTP data-share link, though sensitive details (such as credentials) are not reproduced here in full. The presence of a data-share link implies that the attackers are offering access to exfiltrated data, consistent with data-leak operations. No ransom figure or data volume is disclosed in the provided excerpt, and the post date remains October 22, 2025. A claim URL is present on the page, reinforcing that the attackers are presenting public-facing evidence of the breach.