Nearly 10,000 individualsβ personal data was stolen in a cyberattack exploiting Oracle E-Business Suite vulnerabilities, with some organizations refusing to pay ransom. The Cl0p ransomware group, associated with FIN11, targeted multiple organizations including The Washington Post, Harvard, and American Airlines. #Cl0p #FIN11 #OracleEBS #DataBreach
Keypoints
- The attack exploited zero-day vulnerabilities in Oracle E-Business Suite to access sensitive data.
- Over 120 GB of stolen data, including personal and financial information, was leaked online.
- The breach impacted nearly 10,000 individuals, including employees and contractors of The Washington Post.
- Existing patches were not available when the exploit was initially carried out, indicating a delayed response.
- Other affected organizations include Harvard University, GlobalLogic, and Envoy Air, with some responses ongoing.
Read More: https://www.securityweek.com/washington-post-says-nearly-10000-employees-impacted-by-oracle-hack/