QILIN Ransomware allegedly breached chemical manufacturer giant Dow Inc, listing the company on its Tor data leak site, but at this time, it has not published any proof of the hack. Dow Inc is described as a global chemical manufacturing giant headquartered in the United States, employing approximately 36,000 people worldwide and generating annual revenues of around $40 billion, with operations in more than 160 countries.
The Qilin operation has been active since 2022 and has become one of the most active RaaS groups in 2025, claiming over 40 victims monthly and peaking at 100 in June, using double-extortion tactics to encrypt data and threaten leakage via Tor-based portals. The group enables affiliates to deploy customised ransomware payloads against targeted organisations and has targeted multiple sectors, including manufacturing. Security researchers note that Qilin formed a ransomware alliance with DragonForce and LockBit in early October to boost attack effectiveness.