"Digital engineering outfit GlobalLogic says personal data from more than 10,000 current and former employees was exposed in the wave of Oracle E-Business Suite (EBS) attacks attributed to the Clop ransomware gang. The Hitachi-owned biz joins a growing roster of high-profile victims that also now includes The Washington Post and Allianz UK. In a filing with Maine's attorney general, the US-based GlobalLogic said that 10,471 individuals were affected after criminals gained unauthorized access to its systems."
"In notification letters sent to those impacted, seen by The Register, GlobalLogic admitted the stolen data included names, addresses, Social Security numbers, passport information, and bank account details. GlobalLogic said its investigation identified the earliest date of criminal activity as July 10, 2025, with the most recent occurring on August 20, 2025. This aligns with findings from Google Threat Intelligence Group (GTIG) and Mandiant, which said that suspicious HTTP traffic targeting Oracle EBS servers began in early July."
GlobalLogic reported unauthorized access to systems that exposed personal data of 10,471 current and former employees, including names, addresses, Social Security numbers, passport information, and bank account details. The criminal activity was identified between July 10, 2025 and August 20, 2025, matching Google Threat Intelligence Group and Mandiant findings of suspicious HTTP traffic against Oracle E-Business Suite servers beginning in early July. The breaches exploited Oracle EBS vulnerabilities tracked as CVE-2025-61882 and CVE-2025-61884 that affected internet-exposed systems. The campaign, attributed to the Clop ransomware group, has impacted multiple organizations, including The Washington Post and Allianz UK, and Clop has listed nearly 30 alleged victims.
Read at Theregister
Unable to calculate read time
Collection
[
|
...
]