Bleeping Computer

Oracle patches EBS zero-day exploited in Clop data theft attacks

Update 10/6/25 11:15 AM ET: Updated story with more information on the leaked Oracle source code and the leaking of the exploit. Oracle is warning about a critical E-Business Suite zero-day ...
Computer Weekly

Oracle patches E-Business suite targeted by Cl0p ransomware

Oracle has issued a fix for a critical remote code execution (RCE) vulnerability in its E-Business Suite (EBS), as the well-used enterprise resource planning (ERP) software package emerges as the ...
Bleeping Computer

Clop exploited Oracle zero-day for data theft since early August

The Clop ransomware gang has been exploiting a critical Oracle E-Business Suite (EBS) zero-day bug in data theft attacks since at least early August, according to cybersecurity company CrowdStrike.
Infosecurity-magazine.com

NCSC: Patch Critical Oracle EBS Bug Now

Oracle E-Business Suite (EBS) customers have been urged to patch a critical vulnerability in the product, after reports that the notorious Clop ransomware group has exploited the bug in attacks as a ...
CSOonline

Oracle issues emergency patch for zero-day flaw exploited by Cl0p ransomware gang

It’s the bad news that many customers of Oracle E-Business Suite (EBS) have been dreading: reports of ransomware attacks targeting the software have turned out to be connected to a serious zero-day ...
来自MSN

American Airlines subsidiary Envoy caught in Clop's Oracle EBS raid

Envoy Air, an American Airlines subsidiary, has confirmed that it was among the dozens of organizations compromised via Oracle E-Business Suite (EBS) security flaws, following claims by Clop ...
来自MSN

Clop raid on Oracle E-Business Suite started months ago, researchers warn

Security boffins say the Clop cybercriminal gang has been rummaging through Oracle's E-Business Suite (EBS) for months – and now the exploit code's out there for anyone to grab.… According to new ...
TechRadar

Oracle forced to rush out patch for zero-day exploited in attacks

Oracle patched a critical zero-day RCE flaw in E-Business Suite, actively exploited by ransomware actors Attackers used compromised email accounts to extort victims ...
TechCrunch

Clop hackers caught exploiting Oracle zero-day bug to steal executives’ personal data

Oracle has fixed a zero-day vulnerability in one of its flagship business software products that a hacking group is currently abusing to steal personal information about corporate executives. In a ...
heise online

Patch now! Attackers blackmail Oracle E-Business Suite customers

The software manufacturer Oracle warns of attacks on E-Business Suite (EBS). The unknown perpetrators will then attempt to blackmail Oracle customers. Admins should immediately install the security ...
腾讯网

Oracle EBS再曝高危RCE漏洞,攻击者可窃取敏感数据(CVE-2025-61884)

Oracle 近日披露其 E-Business Suite 存在一个高危漏洞,可使未经身份验证的攻击者远程访问敏感数据,这对依赖该平台开展核心业务的企业敲响了警钟。 该漏洞编号为 CVE-2025-61884,影响 Oracle Configurator 组件,Oracle 在 2025 年 10 月 11 日发布的安全警报中详细说明了该 ...
TechCrunch

‘Dozens’ of organizations had data stolen in Oracle-linked hacks

Security researchers at Google say hackers targeting corporate executives with extortion emails have stolen data from “dozens of organizations,” one of the first signs that the hacking campaign may be ...