#clop

[ follow ]
#oracle-e-business-suite #cve-2025-61882 #ransomware #zero-day #data-extortion #data-breach #oracle
#oracle-e-business-suite
Information security
fromTechzine Global
1 month ago

Oracle patches actively exploited zero-day vulnerability in E-Business Suite

A critical unauthenticated remote-code-execution zero-day (CVE-2025-61882) in Oracle E-Business Suite was actively exploited by Clop; Oracle released an emergency patch.
Information security
fromTheregister
1 month ago

Clop hits Oracle E-Business Suite users with fresh zero-day

Critical zero-day CVE-2025-61882 in Oracle E-Business Suite enables unauthenticated remote code execution and was exploited by Clop for mass data theft and extortion.
more#oracle-e-business-suite
Information security
fromTechzine Global
3 weeks ago

Emergency patch for vulnerability in Oracle E-Business Suite

Critical Oracle E-Business Suite vulnerability CVE-2025-61884 allows unauthenticated attackers to disclose sensitive data across EBS versions 12.2.3–12.2.14; urgent patching recommended.
Information security
fromTechCrunch
1 month ago

Hackers are sending extortion emails to executives after claiming Oracle apps' data breach | TechCrunch

Clop-linked hackers claim to have stolen sensitive data from Oracle E-Business Suite and are sending extortion emails to executives at numerous large organizations.
fromTheregister
1 month ago

Clop-linked crims shake down Oracle with data theft claims

Google's Threat Intelligence Group (GTIG) and Mandiant are tracking the "high-volume" activity, which began last month, and are investigating whether there is any truth to the attackers' boasts. In a statement to The Register, Genevieve Stark, head of cybercrime and information operations intelligence analysis at GTIG, said: "This activity began on or before September 29, 2025, but Mandiant's experts are still in the early stages of multiple investigations, and have not yet substantiated the claims made by this group."
Information security
[ Load more ]