Dartmouth College has suffered a data breach caused by the Clop gang exploiting a zero-day vulnerability in Oracle E-Business Suite, leading to the theft of personal and financial information of affected individuals. The incident is part of a widespread extortion campaign targeting multiple organizations using same zero-day flaw. #Clop #OracleEBS #DataBreach #Harvard #GlobalLogic
Keypoints
- Dartmouth Collegeβs data breach involved the theft of personal and financial information via a zero-day vulnerability in Oracle E-Business Suite.
- The Clop ransomware gang exploited the CVE-2025-61882 flaw since August 2025 to target numerous organizations.
- Other high-profile victims of the Clop extortion campaign include Harvard University, The Washington Post, Logitech, and Envoy Air.
- The breach potentially affects more individuals than initially reported, with unauthorized access dating back to early August 2025.
- Recent attacks have also targeted Ivy League institutions through voice phishing to steal personal data.