Ransomware Group: QILIN

VICTIM NAME: biokplus[.]com

NOTE: No files or stolen information are [exfiltrated/downloaded/taken/hosted/seen/reposted/disclosed] by RedPacket Security. Any legal issues relating to the content of the files should be directed at the attackers directly, not RedPacket Security. This blog is simply posting an editorial news post informing that a company has fallen victim to a ransomware attack. RedPacket Security is in no way affiliated or aligned with any ransomware threat actors or groups and will not host infringing content. The information on this page is fully automated and redacted whilst being scraped directly from the QILIN Onion Dark Web Tor Blog page.

AI Generated Summary of the Ransomware Leak Page

The ransomware leak page pertains to Bio-K Plus International, a company operating in the healthcare sector based in Canada. The breach was discovered on June 12, 2025, and involved the compromise of sensitive business data. The attackers have announced that all of the company’s data will be made available for download on June 23, 2025. The leaked information includes confidential agreements, such as non-disclosure and confidentiality agreements, highlighting the potential exposure of proprietary and private contractual details. The page features a screenshot of possibly internal information or documents related to the company, providing visual evidence of the breach.

The source of the attack appears to be linked to the ‘qilin’ group, known for targeted ransomware operations. No employee or third-party data was indicated as compromised in the leaked information. The leak may put sensitive corporate information at risk, potentially affecting future operations and contractual confidentiality. This incident underscores the importance of cybersecurity vigilance for healthcare organizations, especially those handling proprietary research, production, or marketing data in the biotech industry. The leak emphasizes the ongoing threat posed by ransomware groups, which can disrupt business continuity and compromise sensitive business relationships. No personally identifiable information about individuals was disclosed in the leak, but the potential impact on the company’s reputation could be significant.