Information about the vulnerability exposed by EBS portals is spreading, raising likelihood of new attacks, experts warn.
Mandiant researchers said Clop ransomware is indeed linked to a series of emails threatening to release stolen data.
CrowdStrike links Oracle EBS CVE-2025-61882 (CVSS 9.8) to Cl0p with moderate confidence; CISA adds to KEV, patch by Oct 27, ...
Oracle E-Business Suite attack confirmed to be the work of Cl0p and Oracle has admitted that a zero-day has been exploited.
On October 4, 2025, Oracle released an advisory to address a critical vulnerability, CVE-2025-61882, affecting E-Business Suite (EBS) systems, versions 12.2.3 through 12.2.14.
eWEEK content and product recommendations are editorially independent. We may make money when you click on links to our partners. Learn More. Beefing up the financial modules that complement its ...
Cybercriminals are mailing executives at various American organizations, claiming to have stolen sensitive files from their ...
The Cl0p ransomware group exploited a zero-day security flaw in Oracle's E-Business Suite to compromise corporate networks and steal data, according to Mandiant. The threat actors are sending emails ...
Results that may be inaccessible to you are currently showing.
Hide inaccessible results