Qilin EDR killer infection chain

This blog provides an in-depth analysis of the malicious “msimg32.dll” used in Qilin ransomware attacks, which is a multi-stage infection chain targeting EDR systems.

Ransomware Tactics, Techniques, and Procedures in a Shifting Threat Landscape | Google Cloud Blog

An overview of the ransomware landscape and common TTPs directly observed in 2025 ransomware incidents.

Uncovering Qilin attack methods exposed through multiple cases

Cisco Talos investigated the Qilin ransomware group, uncovering its frequent attacks on the manufacturing sector, use of legitimate tools for credential theft and data exfiltration, and sophisticated methods for lateral movement, evasion, and persistence.

Resecurity | Qilin Ransomware and the Ghost Bulletproof Hosting Conglomerate

Qilin Ransomware Attack on Asahi Brewery: Operational, Financial, and Security Fallout

Explore the operational, financial, and security fallout of the Qilin ransomware attack on Asahi Brewery and its industry-wide implications.

Qilin Ransomware: A Deep Dive into Operations & OPSEC Breakdowns - Darkatlas

A Major Power Shift: The Sudden Disappearance of RansomHub One of the most pivotal developments in the ransomware landscape occurred in late March 2025, when RansomHub—widely regarded as the most prolific ransomware group of 2024—vanished without warning. Known for its highly professional Ransomware-as-a-Service (RaaS) operation, RansomHub had rapidly gained prominence by offering affiliates advanced cross-platform […]

Ransomware Gangs Collapse as Qilin Seizes Control

In this Threat Alert, Cybereason explores the rise of Qilin amidst a turbulent realignment of the ransomware landscape.

SAP Zero - Frostbite: How Russian RaaS Actor Qilin Exploited CVE-2025-31324 Weeks Before its Public Disclosure - OP INNOVATE

CVE-2025-31324 hit the security world like a tsunami - an easily exploitable SAP vulnerability affecting enterprise environments across the globe. But while