Ransomware Group: QILIN

VICTIM NAME: melilla[.]es

NOTE: No files or stolen information are [exfiltrated/downloaded/taken/hosted/seen/reposted/disclosed] by RedPacket Security. Any legal issues relating to the content of the files should be directed at the attackers directly, not RedPacket Security. This blog is simply posting an editorial news post informing that a company has fallen victim to a ransomware attack. RedPacket Security is in no way affiliated or aligned with any ransomware threat actors or groups and will not host infringing content. The information on this page is fully automated and redacted whilst being scraped directly from the QILIN Onion Dark Web Tor Blog page.

AI Generated Summary of the Ransomware Leak Page

The ransomware leak page pertains to the public sector website of the autonomous city of Melilla, located in Spain. The attack was discovered on June 26, 2025, and the incident involved a significant cybersecurity breach that resulted in a complete IT outage. The attack has caused extensive disruptions, preventing government employees from performing their duties and hindering residents from conducting official transactions. Although the exact cause of the outage remains unknown, there is strong suspicion of a cyberattack, highlighting vulnerabilities within the city’s digital infrastructure. The leak includes a link to a Tor site where the compromised data may be accessed, and a screenshot depicting internal documents or related visuals is available. The incident is part of a campaign by the hacking group ‘qilin,’ emphasizing the threat posed to public sector institutions and their digital security management.

Local authorities and cybersecurity experts are actively working to resolve the issue, with assistance from national intelligence services. The leaked information and files could potentially include sensitive data, although specific contents have been redacted or are not publicly disclosed. This incident underscores the importance of strong cybersecurity measures for governmental and public institutions, especially in the face of increasing cyber threats. The leak emphasizes the ongoing risk of targeted attacks against critical infrastructure and public services. Despite the severity of the breach, detailed technical data or victim-specific information remains confidential, ensuring privacy and security for the affected entities.