Cl0p-Linked Gang Attempts to Extort Oracle E-Business Customers
hackread.comA ‘high-volume’ extortion campaign possibly linked to FIN11 and Cl0p is targeting Oracle E-Business executives. Mandiant and GTIG are investigating unproven data theft claims.
Cybersecurity experts are on high alert as a group claiming ties to the infamous Cl0p ransomware gang is bombarding companies with emails that threaten to expose data allegedly stolen from Oracle’s E-Business Suite- a widely used system for managing core business functions like finance and HR.
The activity, which started on or before September 29, 2025, has triggered urgent investigations by security teams at Mandiant and the Google Threat Intelligence Group (GTIG). Targeted organisations, many of which use the Oracle E-Business Suite, are under pressure to respond to the claims.
Connecting the Dots
According to Charles Carmakal, Chief Technology Officer at Mandiant (a Google Cloud company), who has shared his insights with Hackread.com, the attack involves a massive, “high-volume” email campaign sent from hundreds ...
Copyright of this story solely belongs to hackread.com . To see the full text click HERE