"Like countless organizations every day, Michelin is at times the object of cyber-attacks. Despite the highest levels of protection we have in place, Michelin has recently experienced such an incident at the same time as many other companies."
"The company said its teams promptly conducted a thorough investigation and determined that an Oracle EBS zero-day was exploited in the attack. Thanks to Michelin's expertise and processes in the matter, all the corrective actions were taken at the appropriate time and were totally effective."
"The company has confirmed that the hackers accessed some files, but said only a small, localized, volume of data with no sensitive or technical IT information was affected by the incident. Michelin pointed out that no ransomware was involved in the attack and that there has been no impact on its global systems."
Michelin has confirmed it was targeted in a major cybercrime campaign exploiting zero-day vulnerabilities in Oracle's E-Business Suite software. The Cl0p ransomware group claimed responsibility for the operation, though cybersecurity researchers attribute it to a sophisticated threat actor cluster led by FIN11. Over 100 organizations were listed as targets on the Cl0p website. Michelin's investigation revealed that hackers exploited an Oracle EBS zero-day to access files, but only a small volume of non-sensitive data was compromised. The company stated no ransomware was deployed, corrective actions were implemented effectively, and global systems remained unaffected.
#oracle-ebs-vulnerability #cl0p-ransomware-group #data-breach #zero-day-exploitation #cybersecurity-incident
Read at SecurityWeek
Unable to calculate read time
Collection
[
|
...
]