Google to Oracle customers: Apply emergency patches immediately

Google and Mandiant are tracking a large-scale extortion campaign targeting Oracle E-Business Suite users. Attackers, ...
SecurityWeek

CISA Confirms Exploitation of Latest Oracle EBS Vulnerability

CISA has confirmed that an Oracle E-Business Suite (EBS) vulnerability CVE-2025-61884 has been exploited in the wild.

Google researchers say Oracle EBR hackers have hit dozens of organizations

The recent Oracle E-Business Suite cyberattack may have affected dozens of organizations around the world, as Google’s researchers shed more light on the currently active extortion campaign. News ...
The Register on MSN

American Airlines subsidiary Envoy caught in Clop's Oracle EBS raid

Not a good week for Big Red Envoy Air, an American Airlines subsidiary, has confirmed that it was among the dozens of ...
SecurityWeek

Harvard Is First Confirmed Victim of Oracle EBS Zero-Day Hack

Hackers have posted over 1 Tb of information allegedly stolen from Harvard University on the Cl0p data leak website.

Critical Oracle EBS Flaw Could Expose Sensitive Data

Oracle patches a high-severity EBS flaw that could let attackers bypass authentication and access sensitive enterprise data.
Security Boulevard

Cl0p Ransomware Group Exploited a Zero-Day in Oracle EBS Attacks

The Cl0p ransomware group exploited a zero-day security flaw in Oracle's E-Business Suite to compromise corporate networks and steal data, according to Mandiant. The threat actors are sending emails ...
CSO Online

Oracle issues second emergency patch for E-Business Suite in two weeks

Information disclosure flaw, CVE-2025-61884, emerges weeks after zero-day attacks, raising questions about broader security issues in Oracle’s flagship ERP platform.

‘Dozens’ of organizations had data stolen in Oracle-linked hacks

The mass-hacks targeting Oracle E-Business customers is the latest hacking campaign by Clop, an extortion group known for ...