Bleeping Computer

Clop exploited Oracle zero-day for data theft since early August

The Clop ransomware gang has been exploiting a critical Oracle E-Business Suite (EBS) zero-day bug in data theft attacks since at least early August, according to cybersecurity company CrowdStrike.
Bleeping Computer

Clop extortion emails claim theft of Oracle E-Business Suite data

Mandiant and Google are tracking a new extortion campaign where executives at multiple companies received emails claiming that sensitive data was stolen from their Oracle E-Business Suite systems.
Dark Reading

Clop Ransomware Gang Breaches Water Utility, Just Not the Right One

South Staffordshire plc, a UK water-supply company, has acknowledged it was the victim of a cyberattack. Around the same time, the Clop ransomware group started threatening Thames Water that it would ...
Dark Reading

Clop Keeps Racking Up Ransomware Victims With GoAnywhere Flaw

A vulnerability in a commonly used file transfer service called GoAnywhere has allowed the Clop ransomware group to breach about 130 organizations. Weeks later, details are still emerging about the ...
Hosted on MSN

Inside Oracle's zero-day chaos: how Clop rewrote the ransomware rulebook

In August 2023 a zero day was dropped by one of the most functional ransomware gangs and wasand was unknown to most, including security researchers and journalists. CVE-2023-21839, a vulnerability in ...