Qiulong is a ransomware group. Sophos X-Ops reports that the group regularly posts details of CEOs and business owners on its leak site, often accompanied by insults and accusations of negligence, as part of extortion pressure tactics. Sophos also reports that Qiulong posted screenshots of a CEO’s daughter’s identity documents and linked to her Instagram profile, indicating willingness to target secondary victims and apply personal and reputational pressure beyond the breached organization. The only alias directly provided in the content is "qiulong".
Mallory correlates actor tradecraft and target patterns against your stack, your sector, and your geography. See overlap before they land.
1 sources tracked across advisories, community write-ups, and news. New activity surfaces here as Mallory finds it.
Match sector + geo + tech-stack targeting against your real footprint.
Every observed MITRE ATT&CK technique, grouped by tactic.
Families this actor is known to deploy, with IOCs and behavior.
CVEs this actor has used in known campaigns.
YARA, Sigma, Snort, and vendor rules, auto-deployed to your SIEM.
Domains, IPs, and hashes tied to this actor, refreshed continuously.