The Cl0p ransomware group exploited a critical zero-day vulnerability in Oracle’s E-Business Suite to conduct data theft campaigns. Oracle has issued an emergency patch, while the threat actor group Scattered LAPSUS$ Hunters claims the exploit was theirs. #CVE-2025-61882 #Cl0p #OracleEBS #LAPSUS$Hunters
Keypoints
- The CVE-2025-61882 vulnerability allows remote code execution without authentication.
- Oracle quickly released an emergency security patch to address the flaw.
- The Cl0p group used the exploit for widespread data theft campaigns.
- Threat actor group LAPSUS$ Hunters claims ownership of the exploited zero-day.
- Exposed data includes financial records, employee PII, customer data, and business documents.
Read More: https://dailydarkweb.net/oracle-patches-cve%e2%88%922025%e2%88%9261882/