SecurityWeek

Oracle Patches EBS Vulnerability Allowing Access to Sensitive Data

Oracle patched another severe E-Business Suite (EBS) vulnerability that can be exploited to gain access to sensitive data.
Security Boulevard

CVE-2025-61882 Explained: The Oracle Zero-Day Breach That Hit Enterprises Hard

A critical zero-day vulnerability in Oracle E-Business Suite (EBS) was exploited by the Cl0p ransomware group in mid-2025.

Critical Oracle EBS Flaw Could Expose Sensitive Data

Oracle patches a high-severity EBS flaw that could let attackers bypass authentication and access sensitive enterprise data.

Google to Oracle customers: Apply emergency patches immediately

Google and Mandiant are tracking a large-scale extortion campaign targeting Oracle E-Business Suite users. Attackers, ...
CRN

Google Says Oracle EBS Extortion Campaign Possibly Targeted Thousands, Could Date Back To July

Google Threat Intelligence Group and Mandiant share new details on the Oracle E-Business Suite extortion campaign by a threat ...

Oracle rushes out another emergency E-Business Suite patch as Clop fallout widens

Latest in a long line of EBS flaws leta miscreants remotely compromise enterprise systems to pinch sensitive data ...
The Hacker News

Oracle EBS Under Fire as Cl0p Exploits CVE-2025-61882 in Real-World Attacks

CrowdStrike links Oracle EBS CVE-2025-61882 (CVSS 9.8) to Cl0p with moderate confidence; CISA adds to KEV, patch by Oct 27, 2025.
The Register on MSN

Oracle tells Clop-targeted EBS users to apply July patch, problem solved

Researchers suggest internet-facing portals are exposing 'thousands' of orgs Oracle has finally broken its silence on those ...
SecurityWeek

Sophisticated Malware Deployed in Oracle EBS Zero-Day Attacks

Google researchers believe Oracle EBS exploitation may have started as early as July 10 and the campaign hit dozens of ...