SecurityWeek

Exploitation of Oracle EBS Zero-Day Started 2 Months Before Patching

The Oracle EBS zero-day CVE-2025-61882 has been exploited since at least August 9 and hundreds of instances may still be ...
The Register on MSN

Clop raid on Oracle E-Business Suite started months ago, researchers warn

Strap in, admins. Exploits began in August and now the code is out there Security boffins say the Clop cybercriminal gang has ...
SecurityWeek

Sophisticated Malware Deployed in Oracle EBS Zero-Day Attacks

Google researchers believe Oracle EBS exploitation may have started as early as July 10 and the campaign hit dozens of ...
CSO Online

Oracle issues emergency patch for zero-day flaw exploited by Cl0p ransomware gang

Information about the vulnerability exposed by EBS portals is spreading, raising likelihood of new attacks, experts warn.
Infosecurity Magazine

NCSC: Patch Critical Oracle EBS Bug Now

Oracle E-Business Suite (EBS) customers have been urged to patch a critical vulnerability in the product, after reports that the notorious Clop ransomware group has exploited the bug in attacks as a ...
Infosecurity Magazine

Google: Clop Accessed “Significant Amount” of Data in Oracle EBS Exploit

GTIG highlighted indicators that Clop is behind the extortion campaign targeting Oracle EBS instances, with its activity ...
The Hacker News

Oracle EBS Under Fire as Cl0p Exploits CVE-2025-61882 in Real-World Attacks

CrowdStrike links Oracle EBS CVE-2025-61882 (CVSS 9.8) to Cl0p with moderate confidence; CISA adds to KEV, patch by Oct 27, 2025.