ERP security

Oracle patches a high-severity EBS flaw that could let attackers bypass authentication and access sensitive enterprise data.

CISA confirms hackers exploited Oracle E-Business Suite SSRF flaw

CISA has confirmed that an Oracle E-Business Suite flaw tracked as CVE-2025-61884 is being exploited in attacks, adding it to ...
CPO Magazine

Harvard and Envoy Airlines Breached via Oracle’s E-Business Suite Zero-Day Vulnerability

Harvard University and Envoy, an American Airlines subsidiary, have confirmed data breaches linked to a zero-day ...
SecurityWeek

CISA Confirms Exploitation of Latest Oracle EBS Vulnerability

CISA has confirmed that an Oracle E-Business Suite (EBS) vulnerability CVE-2025-61884 has been exploited in the wild.
The American Bazaar

Oracle warns of new security flaw in E-Business Suite exposing sensitive data

Oracle issued a security alert warning of a fresh security flaw impacting its E-Business Suite that it said could allow unauthorized access to sensitive data ...
Bleeping Computer

Latest Oracle E-Business Suite news

Envoy Air, a regional airline carrier owned by American Airlines, confirms that data was compromised from its Oracle E-Business Suite application after the Clop extortion gang listed American Airlines ...
Infosecurity-magazine.com

NCSC: Patch Critical Oracle EBS Bug Now

Oracle E-Business Suite (EBS) customers have been urged to patch a critical vulnerability in the product, after reports that the notorious Clop ransomware group has exploited the bug in attacks as a ...
CSOonline

Oracle issues emergency patch for zero-day flaw exploited by Cl0p ransomware gang

It’s the bad news that many customers of Oracle E-Business Suite (EBS) have been dreading: reports of ransomware attacks targeting the software have turned out to be connected to a serious zero-day ...
CSOonline

Oracle E-Business Suite users targeted in extortion campaign

Cl0p-linked threat actors are targeting Oracle E-Business Suite users with spear-phishing emails claiming theft of sensitive ERP data. Oracle E-Business Suite users beware: Hackers may (or may not) ...
Infosecurity-magazine.com

Hackers Target Unpatched Flaws in Oracle E-Business Suite

Oracle has advised customers that hackers may be exploiting vulnerabilities in unpatched instances of its E-Business Suite (EBS). This follows a warning by the Google Threat Intelligence Group (GTIG) ...
SiliconANGLE

Clop-linked hackers claim Oracle E-Business Suite data theft in high-stakes extortion push

Threat actors aligned with the Clop ransomware group are claiming to have stolen sensitive data from Oracle Corp.’s E-Business Suite and, though Oracle has yet to confirm a breach, customers are ...
TechRadar

Oracle forced to rush out patch for zero-day exploited in attacks

Oracle patched a critical zero-day RCE flaw in E-Business Suite, actively exploited by ransomware actors Attackers used compromised email accounts to extort victims; FIN11 and Cl0p may be involved CVE ...