TechRepublic

Critical Oracle EBS Flaw Could Expose Sensitive Data

Oracle has released a patch for a severe vulnerability in its E-Business Suite (EBS) that could allow unauthenticated attackers to remotely access sensitive configuration data. The flaw carries a high ...
Bleeping Computer

Oracle links Clop extortion attacks to July 2025 vulnerabilities

Oracle has linked an ongoing extortion campaign claimed by the Clop ransomware gang to E-Business Suite (EBS) vulnerabilities that were patched in July 2025. While the company has yet to attribute the ...
Dark Reading

Oracle EBS Attack Victims May Be More Numerous Than Expected

The list of enterprises targeted by recent Oracle EBS attacks may also include Schneider Electric, Pan American Steel, and Cox Enterprises. Earlier this month, the infamous ransomware-as-a-service ...
CSOonline

Oracle issues second emergency patch for E-Business Suite in two weeks

Information disclosure flaw, CVE-2025-61884, emerges weeks after zero-day attacks, raising questions about broader security issues in Oracle’s flagship ERP platform. Oracle has issued its second ...
CRN

Google Says Oracle EBS Extortion Campaign Possibly Targeted Thousands, Could Date Back To July

“In some cases, the threat actor successfully exfiltrated a significant amount of data from impacted organizations,” according to a report by the Google Threat Intelligence Group and Google subsidiary ...
Bleeping Computer

Oracle patches EBS zero-day exploited in Clop data theft attacks

Update 10/6/25 11:15 AM ET: Updated story with more information on the leaked Oracle source code and the leaking of the exploit. Oracle is warning about a critical E-Business Suite zero-day ...
Reuters

Washington Post says it is among victims of cyber breach tied to Oracle software

WASHINGTON, Nov 6 (Reuters) - The Washington Post said it is among victims of a sweeping cyber breach tied to Oracle (ORCL.N), opens new tab software. In a statement released on Thursday, the ...