CPO Magazine

Harvard and Envoy Airlines Breached via Oracle’s E-Business Suite Zero-Day Vulnerability

Harvard University and Envoy, an American Airlines subsidiary, have confirmed data breaches linked to a zero-day ...

CISA confirms hackers exploited Oracle E-Business Suite SSRF flaw

CISA has confirmed that an Oracle E-Business Suite flaw tracked as CVE-2025-61884 is being exploited in attacks, adding it to ...

Oracle silently fixes zero-day exploit leaked by ShinyHunters

Oracle has silently fixed an Oracle E-Business Suite vulnerability (CVE-2025-61884) that was actively exploited to breach ...
The American Bazaar

Oracle warns of new security flaw in E-Business Suite exposing sensitive data

Oracle issued a security alert warning of a fresh security flaw impacting its E-Business Suite that it said could allow unauthorized access to sensitive data ...
CSOonline

Oracle E-Business Suite users targeted in extortion campaign

Cl0p-linked threat actors are targeting Oracle E-Business Suite users with spear-phishing emails claiming theft of sensitive ERP data. Oracle E-Business Suite users beware: Hackers may (or may not) ...
Yahoo Finance

Oracle Investigating Hacks of Customers’ E-Business Suite

The Oracle Corp. campus in Redwood City, California. (Bloomberg) --Oracle Corp. is investigating hacks of numerous customers’ E-Business Suite applications following an extortion campaign targeting ...
Computer Weekly

Oracle patches E-Business suite targeted by Cl0p ransomware

Oracle has issued a fix for a critical remote code execution (RCE) vulnerability in its E-Business Suite (EBS), as the well-used enterprise resource planning (ERP) software package emerges as the ...
Fudzilla

Oracle E-Business Suite hacked in $50 million extortion campaign

Oracle is scrambling to investigate attacks on its E-Business Suite after hackers launched an extortion campaign against major organisations. Insiders said Oracle told staff that criminals had ...
CSO Online

Oracle issues second emergency patch for E-Business Suite in two weeks

Information disclosure flaw, CVE-2025-61884, emerges weeks after zero-day attacks, raising questions about broader security issues in Oracle’s flagship ERP platform.
Hosted on MSN

Clop raid on Oracle E-Business Suite started months ago, researchers warn

Security boffins say the Clop cybercriminal gang has been rummaging through Oracle's E-Business Suite (EBS) for months – and now the exploit code's out there for anyone to grab.… According to new ...
Infosecurity-magazine.com

Hackers Target Unpatched Flaws in Oracle E-Business Suite

Oracle has advised customers that hackers may be exploiting vulnerabilities in unpatched instances of its E-Business Suite (EBS). This follows a warning by the Google Threat Intelligence Group (GTIG) ...
TechRadar

Oracle forced to rush out patch for zero-day exploited in attacks

Oracle patched a critical zero-day RCE flaw in E-Business Suite, actively exploited by ransomware actors Attackers used compromised email accounts to extort victims; FIN11 and Cl0p may be involved CVE ...