Cl0p exploits Oracle E-Business Suite zero-day in data theft, extortion campaign (CVE-2025-61882)

2025-10-06 14:10

The Cl0p extortion gang exploited multiple Oracle E-Business Suite (EBS) vulnerabilities, including one zero-day flaw (CVE-2025-61882), “to steal large amounts of data from several victim[s] in August 2025,” Charles Carmakal, CTO at Mandiant – Google Cloud, stated on Sunday. “Clop has been sending extortion emails to several victims since last Monday. However, please note they may not have attempted to reach out to all victims yet,” he added. The extortion email (Source: Mandiant) About CVE-2025-61882 … More →

The post Cl0p exploits Oracle E-Business Suite zero-day in data theft, extortion campaign (CVE-2025-61882) appeared first on Help Net Security.

This article has been indexed from Help Net Security

Read the original article:

Cl0p exploits Oracle E-Business Suite zero-day in data theft, extortion campaign (CVE-2025-61882)

← Integrate Gemini CLI into Your Kali Terminal to Speed Up Pentesting Tasks

TamperedChef Malware Disguised as PDF Editor Hijacks Browser Credentials and Opens Backdoors →

Read the original article:

Share this:

Related

Post navigation