"Security researchers at Google say that more than 100 organizations are likely to have fallen victim to a large-scale cyberattack on Oracle E-Business Suite. The hacking campaign, carried out by the notorious CL0P group, targets business-critical systems and has already stolen "mass amounts of customer data." The attack may have started three months ago, according to Google's cybersecurity team. "This level of investment suggests the threat actor(s) responsible for the initial intrusion likely dedicated significant resources to pre-attack research," Google said."
"The hackers specifically targeted Oracle's E-Business Suite, a suite of applications that organizations use to manage customers, suppliers, production, and logistics. These systems often form the backbone of business processes, making a successful breach far-reaching. The Alphabet subsidiary emphasizes that CL0P has a long history of large-scale compromises targeting software vendors and service providers. Google analyst Austin Larsen expects the actual number of victims to be even higher: "We are aware of dozens of victims, but we expect there are many more.""
Google security researchers say more than 100 organizations are likely victims of a large-scale cyberattack targeting Oracle E-Business Suite. The campaign, attributed to the CL0P group, reportedly exfiltrated mass amounts of customer data and may have begun three months ago. Indicators point to substantial pre-attack research and resource investment by the threat actor(s). CL0P favors stealthy data theft rather than ransomware encryption, complicating detection and increasing extortion leverage. Oracle confirmed attempts at extortion against its customers but has not responded to new findings. Targeted E-Business Suite modules manage customers, suppliers, production, and logistics, making breaches potentially far-reaching.
Read at Techzine Global
Unable to calculate read time
Collection
[
|
...
]