Automotive supplier Yanfeng claimed to be subjected to Qilin ransomware attack

BleepingComputer reports that major Chinese global automotive parts developer and manufacturer Yanfeng Automotive Interiors was targeted in a cyberattack earlier this month, which caused production disruptions at some of the North American plans of multinational automotive corporation Stellantis and has since been claimed by the Qilin ransomware operation, also known as Agenda. Several samples were published by Qilin on its data leak site as proof of the alleged compromise of Yanfeng's systems, including financial files, quotation documents, non-disclosure agreements, internal reports, and technical data sheets, with the ransomware gang warning that all of the exfiltrated data will be leaked "in the coming days." Such an attack comes months after Qilin's operations were breached by Group-IB, which revealed details not only regarding the group's target exclusions and admin panel but also its recruitment process. Organizations across all sectors have been targeted by Qilin since the emergence of its ransomware-as-a-service platform in August 2022.