[QILIN] – Ransomware Victim: Microbix Biosystems

AI Generated Summary of the Ransomware Leak Page

On October 28, 2025, a ransomware leak post claims that Microbix Biosystems, a Canadian healthcare company, was compromised in a cyberattack. The post is attributed to the threat group qilin and frames the incident as a data-leak event in which sensitive internal materials were exfiltrated from Microbix Biosystems’ network. The post date is 2025-10-28 15:46:55.395523; since no separate compromise date is provided in the page content, this post date serves as the timing anchor. The content centers on Microbix Biosystems, with no other company names positioned as primary victims within the post; the incident is described through a data-leak lens rather than a straightforward encryption scenario.

The leak page includes a gallery of internal materials—seventeen image attachments that appear to be screenshots or internal documents. The images are described in the metadata and appear to be hosted on a Tor onion service; the actual image links are not reproduced here. The body excerpt includes a line labeled TOX with the value 7C35408411AEEBD53CDBCEBAB167D7B22F1E66614E89DFCB62EE835416F60E1BCD6995152B68, and mentions an FTP data share that requires credentials (the credential details are redacted in the public metadata). There is no ransom amount disclosed in the provided excerpt, and the narrative centers on data exfiltration from Microbix Biosystems within the Canadian healthcare sector.