[QILIN] – Ransomware Victim: Octomeca OY

AI Generated Summary of the Ransomware Leak Page

Octomeca OY, a Finland-based provider of load protection solutions for transportation and warehousing, is named as a ransomware victim on a leak page attributed to the group qilin. The page describes Octomeca OY’s business as a manufacturer of stretch-film wrapping machines and turnkey packaging solutions, listing product lines that include wrapping systems such as the OMC-H, OMC-V, OMC-R, and OMC-CW and emphasizing modern technology and high-quality components. The post frames the incident as a data-leak event rather than a simple encryption incident, indicating that data has been exfiltrated from Octomeca OY’s network and may be released. The post date is 2025-10-19; no separate compromise date is provided in the data, and there is no ransom figure disclosed on the page.

The leak page includes three images presented as visual evidence, though the exact contents of these images are not described in the summary. The page also references attacker contact details and data-exfiltration notes—some contact information is clearly present in the source data but has been redacted in the sanitized summary—and notes a TOX fingerprint associated with the actors. The post indicates that downloaded data amount remains unknown at the moment, and there is no stated ransom amount. In addition, the annotations point to image assets hosted on a Tor onion service, with no direct URLs included in the sanitized narrative. The overall claim remains that Octomeca OY is a data-leak victim linked to the group qilin.