Envoy Air Oracle E-Business Suite data leak
Data Leak
Summary
Hide ▲
Show ▼
The Clop gang is leaking data tied to Envoy Air's Oracle E-Business Suite, exposing a limited set of business and commercial contact details. Envoy Air confirmed the compromise and said no sensitive or customer data was affected. The leak matters because public posting can extend a theft event into downstream extortion, phishing, and contact abuse.
Related Happenings
BlackFile victims' Salesforce and SharePoint data leak
Data Leak
First: 24.04.2026 21:26
Last: 24.04.2026 21:26
Sources 1
About this happening:
BlackFile's **stolen documents** were published on a **dark web leak site**, exposing employee and business records taken from **Salesforce** and **SharePoint** environments. The...
BlackFile victims' Salesforce and SharePoint data leak
Data LeakAbout this happening: BlackFile's **stolen documents** were published on a **dark web leak site**, exposing employee and business records taken from **Salesforce** and **SharePoint** environments. The...
Madison Square Garden hit by network compromise linked to Cl0p
Incident
First: 02.03.2026 15:53
Last: 02.03.2026 15:53
Sources 1
About this happening:
**Madison Square Garden** confirmed a **data breach** that exposed **names and SSNs**, and it has started notifying affected people. The compromise involved a **hosted Oracle E-Bu...
Madison Square Garden hit by network compromise linked to Cl0p
IncidentAbout this happening: **Madison Square Garden** confirmed a **data breach** that exposed **names and SSNs**, and it has started notifying affected people. The compromise involved a **hosted Oracle E-Bu...
Wynn Resorts hit by cyberattack
Incident
First: 24.02.2026 23:51
Last: 24.02.2026 23:51
Sources 1
About this happening:
**Wynn Resorts** confirmed an **employee data breach** after an unauthorized third party stole data from its systems, creating exposure risk for staff records. The company said it...
Wynn Resorts hit by cyberattack
IncidentAbout this happening: **Wynn Resorts** confirmed an **employee data breach** after an unauthorized third party stole data from its systems, creating exposure risk for staff records. The company said it...
ShinyHunters data-leak site exposing stolen attack data
Data Leak
First: 31.01.2026 17:02
Last: 31.01.2026 17:02
Sources 1
About this happening:
The **ShinyHunters** extortion gang launched a **data-leak site**, beginning to publish data tied to the theft campaign and raising the exposure risk for victims.
ShinyHunters data-leak site exposing stolen attack data
Data LeakAbout this happening: The **ShinyHunters** extortion gang launched a **data-leak site**, beginning to publish data tied to the theft campaign and raising the exposure risk for victims.
Korean Air employee data leak via KC&D breach
Data Leak
First: 29.12.2025 15:08
Last: 29.12.2025 15:08
Sources 1
About this happening:
The airline disclosed a **data breach** that exposed employee **names** and **bank account numbers**, creating fraud and impersonation risk for **Korean Air** staff. The leak foll...
Korean Air employee data leak via KC&D breach
Data LeakAbout this happening: The airline disclosed a **data breach** that exposed employee **names** and **bank account numbers**, creating fraud and impersonation risk for **Korean Air** staff. The leak foll...
Timeline
-
17.10.2025 22:11 2 articles · 7mo ago
Envoy Air confirms Oracle E-Business Suite compromise and Clop leak
Initial DisclosureEnvoy Air confirmed that data from its Oracle E-Business Suite application was compromised after Clop listed American Airlines on a data leak site and began leaking what it claims are Envoy files. Envoy said it immediately began an investigation, contacted law enforcement, and reviewed the data at issue, concluding that no sensitive or customer data was affected while a limited amount of business information and commercial contact details may have been exposed.
Show sources
- American Airlines subsidiary Envoy confirms Oracle data theft attack — www.bleepingcomputer.com — 17.10.2025 22:11
- American Airlines subsidiary Envoy confirms Oracle data theft attack — www.bleepingcomputer.com — 17.10.2025 22:11