[QILIN] – Ransomware Victim: Malgor

AI Generated Summary of the Ransomware Leak Page

On 2025-10-24, a ransomware leak post attributed to the threat group qilin identified Malgor as a victim. The page presents Malgor & Co., Inc.—described in the description as a San Juan, Puerto Rico–based distributor founded in 1926 that supplies proprietary lines of food and related items—as a long-established target with a broad client base. The post characterizes the incident as a data-leak event, indicating that data exfiltration occurred and that stolen materials may be released or shared by the attackers. Because there is no explicit compromise date in the data, the post date is used as the event reference. The page also notes the existence of a claim URL and includes a gallery of visual materials, indicating that 14 images are present on the page as evidence or illustration.

The leak page contains an excerpt referencing a TOX key and an FTP drop point that includes login credentials. For safety, the credentials are redacted and the address is defanged in this summary; a sanitized reading would describe an FTP link to a remote host with redacted credentials (ftp://datashare:[REDACTED]@[64[.]176[.]162[.]76]). The metadata indicates 14 images accompany the post, likely screenshots or internal documents intended to corroborate the claim. No ransom amount is disclosed in the provided data, and the post does not supply additional industry details beyond the victim’s identity. Taken together, the page presents a data-leak notification associated with Malgor, issued by qilin, rather than a standalone encryption-only notice.