Envoy Air Oracle E-Business Suite data leak
Data Leak
Summary
Hide ▲
Show ▼
The Clop gang is leaking data tied to Envoy Air's Oracle E-Business Suite, exposing a limited set of business and commercial contact details. Envoy Air confirmed the compromise and said no sensitive or customer data was affected. The leak matters because public posting can extend a theft event into downstream extortion, phishing, and contact abuse.
Related Happenings
ShinyHunters Oracle PeopleSoft data theft from 300 instances
Data Leak
H score46
First: 11.06.2026 22:39
Last: 11.06.2026 22:39
Sources 1
About this happening:
The **ShinyHunters** data-leak event against **Oracle PeopleSoft** instances exposed data from **300 instances** across **100+ organizations**, expanding the risk of theft-driven...
ShinyHunters Oracle PeopleSoft data theft from 300 instances
Data LeakAbout this happening: The **ShinyHunters** data-leak event against **Oracle PeopleSoft** instances exposed data from **300 instances** across **100+ organizations**, expanding the risk of theft-driven...
Nottingham University data publication on ShinyHunters leak site
Data Leak
H score68
First: 10.06.2026 21:31
Last: 10.06.2026 21:31
Sources 1
About this happening:
**Nottingham University** data was published on the **ShinyHunters** leak site after the group claimed access to the university’s **student records system**. The exposed material...
Nottingham University data publication on ShinyHunters leak site
Data LeakAbout this happening: **Nottingham University** data was published on the **ShinyHunters** leak site after the group claimed access to the university’s **student records system**. The exposed material...
BlackFile victims' Salesforce and SharePoint data leak
Data Leak
H score28
First: 24.04.2026 21:26
Last: 24.04.2026 21:26
Sources 1
About this happening:
BlackFile's **stolen documents** were published on a **dark web leak site**, exposing employee and business records taken from **Salesforce** and **SharePoint** environments. The...
BlackFile victims' Salesforce and SharePoint data leak
Data LeakAbout this happening: BlackFile's **stolen documents** were published on a **dark web leak site**, exposing employee and business records taken from **Salesforce** and **SharePoint** environments. The...
Madison Square Garden hit by network compromise linked to Cl0p
Incident
H score30
First: 02.03.2026 15:53
Last: 02.03.2026 15:53
Sources 1
About this happening:
**Madison Square Garden** confirmed a **data breach** that exposed **names and SSNs**, and it has started notifying affected people. The compromise involved a **hosted Oracle E-Bu...
Madison Square Garden hit by network compromise linked to Cl0p
IncidentAbout this happening: **Madison Square Garden** confirmed a **data breach** that exposed **names and SSNs**, and it has started notifying affected people. The compromise involved a **hosted Oracle E-Bu...
Wynn Resorts hit by cyberattack
Incident
H score29
First: 24.02.2026 23:51
Last: 24.02.2026 23:51
Sources 1
About this happening:
**Wynn Resorts** confirmed an **employee data breach** after an unauthorized third party stole data from its systems, creating exposure risk for staff records. The company said it...
Wynn Resorts hit by cyberattack
IncidentAbout this happening: **Wynn Resorts** confirmed an **employee data breach** after an unauthorized third party stole data from its systems, creating exposure risk for staff records. The company said it...
Timeline
-
17.10.2025 22:11 2 articles · 7mo ago
Envoy Air confirms Oracle E-Business Suite compromise and Clop leak
Initial DisclosureEnvoy Air confirmed that data from its Oracle E-Business Suite application was compromised after Clop listed American Airlines on a data leak site and began leaking what it claims are Envoy files. Envoy said it immediately began an investigation, contacted law enforcement, and reviewed the data at issue, concluding that no sensitive or customer data was affected while a limited amount of business information and commercial contact details may have been exposed.
Show sources
- American Airlines subsidiary Envoy confirms Oracle data theft attack — www.bleepingcomputer.com — 17.10.2025 22:11
- American Airlines subsidiary Envoy confirms Oracle data theft attack — www.bleepingcomputer.com — 17.10.2025 22:11