The ransomware claim asserts that the threat actor qilin compromised Grupo Tomza in Mexico, encrypting systems as part of the attack. There are no available details on ransom demands, data leakage, or the extent of the incident. #Mexico
Incident Details
- Victim: Grupo Tomza
- Sector: Energy
- Country: MX
- Actor: qilin
- Source: http://ijzn3sicrcy7guixkzjkib4ukbiilwc3xhnmby4mcbccnsd7j2rekvqd.onion/site/view?uuid=9c11e7de-5468-31c0-85fc-063c5f869e36
- Discovered: 2026-02-21 15:17:48.769935
- Published: 2026-02-21 15:17:33.234004
Information
- Ransomware incident attributed to Qilin.
- Target: Grupo Tomza.
- Location: Mexico (MX).
- No additional details available.
Disclaimer: This post is based on public claims made by the ransomware group "qilin". I cannot confirm the accuracy of the information. However, I would be happy to share any official statement from the affected organization to provide clarification.