Search Results: ClopRansomware

A critical vulnerability in Oracle's enterprise software led to the theft of sensitive financial data for nearly 10,000 Washington Post employees and contractors. The Clop ransomware group exploited the then-zero-day flaw to target multiple major organizations, highlighting systemic risks in widely used ERP systems.

Envoy Air, a regional carrier owned by American Airlines, confirms data theft from its Oracle E-Business Suite systems following exploitation of a critical zero-day vulnerability by the Clop ransomware gang. The breach, part of a broader August attack spree impacting dozens of organizations including Harvard University, underscores persistent threats to enterprise application security and Clop's shift toward sophisticated supply chain targeting.

Oracle has linked ongoing Clop ransomware extortion attacks to critical vulnerabilities in its E-Business Suite patched in July 2025. The company confirms customers received ransom demands while urging immediate patching, as threat actors exploit flaws allowing remote access without credentials.

Executives at multiple companies are receiving extortion emails claiming sensitive data was stolen from their Oracle E-Business Suite systems, with security firms Mandiant and Google tracing links to the notorious Clop ransomware gang. While tactics mirror previous Clop operations, evidence of actual data theft remains unverified amid ongoing investigations into compromised email accounts and potential zero-day exploits.