Skip to main content
Login
institutional access

You are connecting from
Lake Geneva Public Library,
please login or register to take advantage of your institution's Ground News Plan.

Published loading...Updated

FBI Is Warning Companies To Patch Their Oracle Databases Immediately

Clop ransomware gang exploited a zero-day flaw in Oracle E-Business Suite to steal sensitive executive data and demand ransoms in a global campaign starting August 2025, CrowdStrike reported.

  • CrowdStrike Intelligence says CVE-2025-61882 in Oracle E-Business Suite drives a mass data-exfiltration campaign targeting internet-exposed systems and corporate executives.
  • On August 9, 2025, telemetry shows the first suspected exploitation, and around September 29 extortion emails from Cl0p and GRACEFUL SPIDER began demanding ransoms.
  • Security scoring places the flaw at CVSS 9.8, indicating critical risk, and affected versions include Oracle E-Business Suite 12.2.3–12.2.14, with rapid7 warning of widespread exploitation.
  • Oracle advised customers to patch immediately and monitor for compromise, as attackers stole executive and corporate data and sent extortion messages demanding ransom.
  • Public postings on October 3, 2025, suggest exploit code and a weaponized POC, with Carmakal warning organizations to check for prior compromise, regardless of patch timing.
Insights by Ground AI

13 Articles

BleepingComputerBleepingComputer
Center

Clop exploited Oracle zero-day for data theft since early August

The Clop ransomware gang has been exploiting a critical Oracle E-Business Suite (EBS) zero-day bug in data theft attacks since at least early August, according to cybersecurity company CrowdStrike.

Read Full Article
ForbesForbes
Center

FBI Is Warning Companies To Patch Their Oracle Databases Immediately

Oracle zero-day vulnerabilities are being targeted by at least one major cybercrime group and the FBI says it's looking bad.

·United States
Read Full Article
ChannelNewsChannelNews

A Critical Zero-Day Fault at the Origin of Oracle Data Extortion

Following the investigation into the massive extortion campaign against Oracle E-Business customers: Oracle has just pointed out an unknown zero-day vulnerability until then and has published fixes to remedy this new critical flaw. Unsurprisingly, the software giant strongly recommends that its customers apply the update as soon as [...] The post A critical zero-day flaw that caused Oracle data extortion appeared first on ChannelNews.

Read Full Article
IT Brief AsiaIT Brief Asia
+5 Reposted by 5 other sources

Oracle issues urgent patch as Cl0p exploits suite flaw for attacks

Oracle has issued an urgent patch for a critical flaw in its E-Business Suite, exploited by the Cl0p ransomware group using advanced social engineering tactics.

Read Full Article
IMPIMP

Oracle Issues Emergency Patch After Zero-Day Exploit by Clop Hackers

Hackers exploit critical Oracle E-Business vulnerability to target and extort corporate executives amid mass data theft campaign Oracle… The post Oracle Issues Emergency Patch After Zero-Day Exploit by Clop Hackers appeared first on IMP.NEWS.

Read Full Article
cybernoz.comcybernoz.com

CrowdStrike Alerts on Oracle E-Business Suite 0-Day Under Mass Exploitation - Cybernoz - Cybersecurity News

A novel zero-day vulnerability in Oracle E-Business Suite (CVE-2025-61882) is being actively exploited in a large-scale data exfiltration campaign, with CrowdStrike Intelligence attributing primary involvement to the GRACEFUL SPIDER threat group and warning that public proof-of-concept details will spur further attacks. On August 9, 2025, the first suspected exploitation of an unauthenticated remote code execution vulnerability in Oracle E-Busin…

Read Full Article
Think freely.Subscribe and get full access to Ground NewsSubscriptions start at $9.99/yearSubscribe

Bias Distribution

  • 100% of the sources are Center
100% Center

Factuality 

To view factuality data please Upgrade to Premium

Ownership

To view ownership data please Upgrade to Vantage

GBHackers On Security broke the news in on Tuesday, October 7, 2025.
Sources are mostly out of (0)

Similar News Topics

Oracle icon

Oracle

CrowdStrike icon

CrowdStrike

FBI icon

FBI

Australia icon

Australia

News
For You
SearchBlindspotLocal