The Cl0p ransomware group is conducting a high-volume extortion campaign, targeting executives with demands up to $50 million after allegedly exploiting Oracle’s default password-reset function to access E-Business Suite applications and steal sensitive data. While Google confirms the campaign's scale, the actual data exfiltration remains unverified, underscoring significant financial, regulatory, and reputational risks for corporations reliant on critical enterprise software.
A high-volume extortion campaign, attributed to the Cl0p ransomware group, is targeting global corporations by allegedly exploiting a default password-reset function within Oracle's widely used E-Business Suite. The attackers are directly contacting executives with ransom demands, one reportedly as high as $50 million, to prevent the release of purportedly stolen financial, supply chain, and customer data. While Alphabet's Google has confirmed the scale of the outreach campaign, it has not yet verified the hackers' claims of successful data exfiltration. This incident places significant negative pressure on Oracle (ORCL), as a vulnerability in a core enterprise product raises serious questions about software security and potential reputational damage. The campaign's methodology, which involves mass data theft rather than just encryption and leverages Cl0p's established reputation from past major breaches like the MOVEit attack, underscores a systemic risk for all enterprises dependent on critical third-party software for their core operations.
AI-powered research, real-time alerts, and portfolio analytics for institutional investors.
Request a DemoOverall Sentiment
strongly negative
Sentiment Score
-0.70
Ticker Sentiment
