Qilin ransomware claims Scientology data breach, leaks internal documents
Published By admin
The Church of Scientology has been listed on the dark web leak site of the Qilin ransomware group, which claims responsibility for a data breach and has published 22 screenshots as proof of access. The group has not disclosed the amount of data allegedly stolen or the method of the breach, according to a recent report by HackRead.
The leaked screenshots appear to originate from Advanced Organisation Saint Hill UK (AOSH UK), a significant hub for the Church. Evidence includes visa processing records for religious staff, detailed operational spending for mailing campaigns and events, and extensive security budgets totaling nearly £100,000 for 2024 and 2025. Financial invoices, banking details and personal member information, including travel history and internal classifications, are also visible. The data suggests a compromise at the file server or document management level, rather than a single endpoint. Qilin ransomware, believed to be Russia-based, operates on a ransomware-as-a-service model, employing double extortion tactics by encrypting data and threatening to publish stolen information.
The potential exposure of immigration records and member details raises significant privacy concerns. This breach underscores the need for robust cybersecurity measures, including regular data backups, employee training on phishing, and secure remote access protocols, especially for organizations handling sensitive personal and financial information.
Content retrieved from: https://www.scworld.com/brief/qilin-ransomware-claims-scientology-data-breach-leaks-internal-documents.
