[QILIN] – Ransomware Victim: Marine Turbine Technologies

AI Generated Summary of the Ransomware Leak Page

On November 7, 2025, Marine Turbine Technologies, a US-based manufacturer operating in the Industrial Machinery & Equipment sub-sector of the Manufacturing industry, is named as a ransomware leak victim in a post attributed to the Qilin group. The leak page publicly lists the victim’s name and industry, and provides a post date that matches the metadata. The post includes a token labeled TOX, with the value TOX: 7C35408411AEEBD53CDBCEBAB167D7B22F1E66614E89DFCB62EE835416F60E1BCD6995152B68, which appears to be an internal reference used by the attackers. There is no stated compromise date beyond the post date, and the post does not explicitly indicate whether encryption or data exfiltration occurred, nor does it reveal any ransom figure. The metadata notes that a claim URL is present on the page, consistent with ransomware leak-page conventions, though the content of that claim is not shown in the provided excerpt.

The post is accompanied by three image assets, described in the metadata as images; they appear to be screenshots or internal-document style visuals, though the exact contents are not described in the excerpt. The images are hosted on Tor onion addresses in the underlying data, but no direct URLs are provided in this narrative. PII is not present in the data beyond redacted details, and the victim’s name is preserved for contextual clarity. Overall, this entry aligns with a ransomware leak narrative for Marine Turbine Technologies, with the post date serving as the temporal reference; the excerpt does not specify whether there was an encryption event or a ransom demand, and there is no explicit stated impact beyond the existence of a leak post.