In 2025, Qilin published more victims than any other ransomware group, quickly establishing itself as the most prolific operation by victim count. But can those numbers actually be trusted? I recently reviewed Qilin’s leak site, examining everything I could see on the site and scrolling back through posts that date back to October 2024. The data shows that 509 out of 963 listed victims remain in a "threat-only" state. That is more than 50% For some of these 509 entries, Qilin published a small number of screenshots.…