Korean Air disclosed a data breach that exposed the personal information of 30,000 employees due to a cyberattack linked to the Oracle E-Business Suite vulnerability. The attack is believed to be part of the wider Oracle EBS campaign by the Cl0p ransomware group affecting multiple organizations, including those in the aviation industry. #KoreanAir #KC&D #OracleEBS #Cl0p #FIN11
Keypoints
- Korean Air’s employee data was compromised in a cyberattack affecting its former subsidiary, KC&D.
- The breach involved the theft of approximately 30,000 employee records, including names and bank details.
- The attack is associated with the Oracle E-Business Suite zero-day vulnerability exploited by threat groups like Cl0p.
- Several organizations, including airlines like Envoy Air and Asiana Airlines, were targeted in the same campaign.
- The Cl0p group publicly posted nearly 500 GB of stolen data on its leak site, indicating widespread impact.
Read More: https://www.securityweek.com/korean-air-data-compromised-in-oracle-ebs-hack/