CISA confirms hackers exploited Oracle E-Business Suite SSRF flaw

CISA has confirmed that an Oracle E-Business Suite flaw tracked as CVE-2025-61884 is being exploited in attacks, adding it to ...
CPO Magazine

Harvard and Envoy Airlines Breached via Oracle’s E-Business Suite Zero-Day Vulnerability

Harvard University and Envoy, an American Airlines subsidiary, have confirmed data breaches linked to a zero-day ...
Bleeping Computer

Oracle links Clop extortion attacks to July 2025 vulnerabilities

Oracle has linked an ongoing extortion campaign claimed by the Clop ransomware gang to E-Business Suite (EBS) vulnerabilities that were patched in July 2025. While the company has yet to attribute the ...
Computer Weekly

Oracle patches E-Business suite targeted by Cl0p ransomware

Oracle has issued a fix for a critical remote code execution (RCE) vulnerability in its E-Business Suite (EBS), as the well-used enterprise resource planning (ERP) software package emerges as the ...
TechRadar

Oracle forced to rush out patch for zero-day exploited in attacks

Oracle patched a critical zero-day RCE flaw in E-Business Suite, actively exploited by ransomware actors Attackers used compromised email accounts to extort victims; FIN11 and Cl0p may be involved CVE ...
TechCrunch

Clop hackers caught exploiting Oracle zero-day bug to steal executives’ personal data

Oracle has fixed a zero-day vulnerability in one of its flagship business software products that a hacking group is currently abusing to steal personal information about corporate executives. In a ...
TechCrunch

‘Dozens’ of organizations had data stolen in Oracle-linked hacks

Security researchers at Google say hackers targeting corporate executives with extortion emails have stolen data from “dozens of organizations,” one of the first signs that the hacking campaign may be ...
CRN

Oracle: Unpatched Vulnerabilities Behind E-Business Data Extortion Attacks

Following reports that the cybercriminal group Clop has been extorting E-Business Suite customers, Oracle linked the campaign to vulnerabilities addressed in July. The data extortion campaign ...
Mint

Data breach alert! Google warns hackers exploited Oracle apps to steal data and send extortion emails

Google has warned that executives and IT departments at major organisations are facing extortion attempts after hackers claimed to have stolen sensitive data from Oracle Corp.’s widely used E-Business ...
The New York Times

Take Two: Why Big Companies Are Naming Co-C.E.O.s

Comcast, Oracle and Spotify recently doubled up on top executives, a rare setup that some say could become more common. Credit...Antonio Sortino Supported by By Jordyn Holman After running Spotify for ...
The Forward on MSN

Ellison’s Oracle poised to run TikTok, raising hopes for tougher rules against antisemitism

American Jewish leaders have blamed Tiktok for allowing antisemitism to spread among young people and Israeli Prime Minister Benjamin Netanyahu recently accused China of using the platform to promote ...
EconoTimes

Envoy Air Confirms Data Breach Linked to Oracle E-Business Suite Exploit by CL0P Hackers

Envoy Air, the largest regional carrier for American Airlines, has confirmed a cybersecurity breach tied to a recent wave of attacks exploiting vulnerabilities in Oracle E-Business Suite applications.