Qilin ransomware group claims responsibility for cyberattack on Yanfeng automotive

The Qilin ransomware group,has taken responsibility for a cyberattack on Yanfeng Automotive Interiors, a leading global automotive parts supplier from China. Yanfeng is a key supplier to major automakers like General Motors, Volkswagen Group, Ford, and others.

This month, Yanfeng experienced a cyberattack that disrupted operations, notably impacting Stellantis and halting its North American production temporarily. While Yanfeng did not comment on the incident, its website was offline until recently, returning without any statements about the disruption.

Stellantis acknowledged a production disruption due to an issue with an external supplier, resuming full production by November 16. The Qilin group announced their attack on Yanfeng on their Tor data leak extortion site, posting samples of accessed data including financial documents and technical data sheets, and threatening to release more data soon.

No details about any impacted individuals are disclosed.

Qilin, which launched its ransomware-as-a-service platform in late 2022 under the name Agenda and rebranded to Qilin in 2023, targets various sectors with customized attacks.