SecurityWeek

Oracle’s First 2026 CPU Delivers 337 New Security Patches

Oracle patches roughly 230 unique CVEs across more than 30 products with its first Critical Patch Update (CPU) released in ...
thecyberexpress

Latest Oracle EBS Victims Include Korean Air, University of Phoenix

Victims of the CL0P ransomware group’s August campaign targeting Oracle E-Business Suite vulnerabilities are still coping with the aftermath of the cyberattacks, as Korean Air and the University of ...
Austin American-Statesman

Oracle facing possible class action over data breaches impacting millions

Oracle Corp., the Austin-based tech giant, is facing a potential class-action lawsuit over multiple data breaches this year impacting millions of people. A federal judge in Austin is currently ...
SiliconANGLE

Nearly 3.5M affected in University of Phoenix breach tied to Clop-linked Oracle EBS exploit

The University of Phoenix has confirmed a major data breach affecting nearly 3.5 million current and former students, employees, faculty and suppliers, which followed an exploit by the Clop ransomware ...
CPO Magazine

Dartmouth College Impacted by Oracle E-Business Suite Data Breach

Dartmouth College has confirmed it was the victim of a zero-day data breach via Oracle’s E-Business Suite (EBS) applications, after the Clop ransomware gang leaked its stolen data. “We recently ...
Infosecurity-magazine.com

GlobalLogic Becomes Latest Cl0p Victim After Oracle EBS Attack

US-headquartered GlobalLogic has notified thousands of current and former employees that their data was compromised in a recent large-scale data extortion campaign. According to a notification letter ...
Dark Reading

Oracle EBS Attack Victims May Be More Numerous Than Expected

The list of enterprises targeted by recent Oracle EBS attacks may also include Schneider Electric, Pan American Steel, and Cox Enterprises. Earlier this month, the infamous ransomware-as-a-service ...
CPO Magazine

Harvard and Envoy Airlines Breached via Oracle’s E-Business Suite Zero-Day Vulnerability

Harvard University and Envoy have confirmed they were breached via zero-day vulnerability in Oracle’s E-Business Suite (EBS) products. CVE-2025-61882 is a critical vulnerability (CVSS v3 9.8) in the ...
SecurityWeek

CISA Confirms Exploitation of Latest Oracle EBS Vulnerability

The cybersecurity agency CISA has confirmed that an Oracle E-Business Suite (EBS) vulnerability patched earlier this month has been exploited in the wild. Dozens of Oracle customers have been targeted ...
Dark Reading

Harvard University Breached in Oracle Zero-Day Attack

Harvard University confirmed that it fell victim to an attack exploiting the recently disclosed zero-day vulnerability in Oracle's E-Business Suite (EBS) system. The critical vulnerability, tracked as ...
CSOonline

Oracle issues second emergency patch for E-Business Suite in two weeks

Information disclosure flaw, CVE-2025-61884, emerges weeks after zero-day attacks, raising questions about broader security issues in Oracle’s flagship ERP platform. Oracle has issued its second ...
Bleeping Computer

Oracle releases emergency patch for new E-Business Suite flaw

Oracle has issued an emergency security update over the weekend to patch another E-Business Suite (EBS) vulnerability that can be exploited remotely by unauthenticated attackers. Tracked as ...