[QILIN] – Ransomware Victim: Scouts Canada

AI Generated Summary of the Ransomware Leak Page

Scouts Canada, a Canadian Public Sector organization, is identified as a victim in a ransomware leak post attributed to the Qilin group. The post was published on 2025-11-08 05:50:18.072561, which is treated here as the post date since no separate compromise date is provided. The leak page lists the victim by name and industry and presents the incident as a data-leak event rather than a confirmed full encryption of systems. A claim URL is noted, suggesting the attackers provide additional evidence or context for the stolen materials. The page includes three images that appear to be screenshots of internal materials, hosted on a dark-web onion domain. A TOX token is displayed on the page, serving as an internal reference to the leaked data.

No ransom amount or explicit encryption detail is disclosed in the available excerpt; the data indicates an empty field for income_or_ransom. The combination of a claim URL and the presence of three images implies the attackers are presenting evidence of data exfiltration, consistent with ransomware data-leak postings. The victim is Scouts Canada, classified in the Public Sector, with the incident occurring in Canada. The three images likely depict internal documents or related materials, though their exact contents are not described in the excerpt. This leak emphasizes ongoing risk to public-sector organizations from ransomware operators and the potential exposure of sensitive materials via leak-site postings.