CRN

CISA: Oracle E-Business Suite Vulnerability Exploited In Ransomware Attacks

Oracle had initially disclosed the vulnerability earlier this month, though without providing any details about exploitation. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has ...
Computer Weekly

Oracle patches E-Business suite targeted by Cl0p ransomware

Oracle has issued a fix for a critical remote code execution (RCE) vulnerability in its E-Business Suite (EBS), as the well-used enterprise resource planning (ERP) software package emerges as the ...
Bleeping Computer

Oracle links Clop extortion attacks to July 2025 vulnerabilities

Oracle has linked an ongoing extortion campaign claimed by the Clop ransomware gang to E-Business Suite (EBS) vulnerabilities that were patched in July 2025. While the company has yet to attribute the ...
CRN

‘High-Volume’ Extortion Campaign Claims Oracle E-Business Data Theft: Mandiant

The campaign may be linked to the cybercriminal group Clop, previously responsible for a series of widespread data theft attacks, according to Mandiant and Google threat researchers. Mandiant and ...
TechCrunch

Clop hackers caught exploiting Oracle zero-day bug to steal executives’ personal data

Oracle has fixed a zero-day vulnerability in one of its flagship business software products that a hacking group is currently abusing to steal personal information about corporate executives. In a ...
Security Boulevard

Governing AI Agents and Non‑Human Identities in Oracle, SAP, and Business‑Critical SaaS

A Federated Control Plane for Human and Non‑Human Identities in SOX/ITGC‑Governed ERP Environments Executive summary AI is now a first‑class operator in ERP and SaaS, but most control frameworks still ...