SecurityWeek

CISA Confirms Exploitation of Latest Oracle EBS Vulnerability

CISA has confirmed that an Oracle E-Business Suite (EBS) vulnerability CVE-2025-61884 has been exploited in the wild.
The American Bazaar

Oracle warns of new security flaw in E-Business Suite exposing sensitive data

Oracle issued a security alert warning of a fresh security flaw impacting its E-Business Suite that it said could allow unauthorized access to sensitive data ...
Yahoo Finance

Oracle Investigating Hacks of Customers’ E-Business Suite

The Oracle Corp. campus in Redwood City, California. (Bloomberg) --Oracle Corp. is investigating hacks of numerous customers’ E-Business Suite applications following an extortion campaign targeting ...

CISA confirms hackers exploited Oracle E-Business Suite SSRF flaw

CISA has confirmed that an Oracle E-Business Suite flaw tracked as CVE-2025-61884 is being exploited in attacks, adding it to ...
The Register on MSN

American Airlines subsidiary Envoy caught in Clop's Oracle EBS raid

Not a good week for Big Red Envoy Air, an American Airlines subsidiary, has confirmed that it was among the dozens of ...
Bloomberg L.P.

Oracle Apps Exploited by Hackers in New Extortion Campaign

Executives and technology departments at large organizations are being extorted by a notorious ransomware group that claims to have stolen their data from a suite of popular Oracle Corp. applications, ...
Bleeping Computer

Oracle patches EBS zero-day exploited in Clop data theft attacks

Update 10/6/25 11:15 AM ET: Updated story with more information on the leaked Oracle source code and the leaking of the exploit. Oracle is warning about a critical E-Business Suite zero-day ...