The Washington Post employee and contractor data leak
Data Leak
Summary
Hide ▲
Show ▼
The Washington Post is notifying nearly 10,000 employees and contractors after personal and financial data was exposed, creating identity-theft and fraud risk. Attackers accessed parts of the internal network between July 10 and August 22, 2025 by exploiting a then-zero-day flaw in Oracle E-Business Suite. The compromised records included full names, bank account numbers and routing numbers, Social Security numbers, and tax and ID numbers. The vulnerability is now tracked as CVE-2025-61884 and has been linked to Clop, showing the leak was part of a broader Oracle-driven intrusion wave.
Related Happenings
HackerOne employee and dependent data leak after Navia breach
Data Leak
First: 24.03.2026 16:01
Last: 24.03.2026 16:01
Sources 1
About this happening:
HackerOne disclosed that **sensitive employee and dependent data** was exposed after attackers accessed **Navia** through a **Broken Object Level Authorization (BOLA) vulnerabilit...
HackerOne employee and dependent data leak after Navia breach
Data LeakAbout this happening: HackerOne disclosed that **sensitive employee and dependent data** was exposed after attackers accessed **Navia** through a **Broken Object Level Authorization (BOLA) vulnerabilit...
Madison Square Garden hit by network compromise linked to Cl0p
Incident
First: 02.03.2026 15:53
Last: 02.03.2026 15:53
Sources 1
About this happening:
**Madison Square Garden** confirmed a **data breach** that exposed **names and SSNs**, and it has started notifying affected people. The compromise involved a **hosted Oracle E-Bu...
Madison Square Garden hit by network compromise linked to Cl0p
IncidentAbout this happening: **Madison Square Garden** confirmed a **data breach** that exposed **names and SSNs**, and it has started notifying affected people. The compromise involved a **hosted Oracle E-Bu...
Monroe University stolen-data breach affecting 320,973 people
Data Leak
First: 14.01.2026 10:57
Last: 14.01.2026 10:57
Sources 1
About this happening:
The **Monroe University data leak** now has a confirmed scope of **320,973 affected individuals**, raising the risk of identity theft and account abuse. Attackers accessed the uni...
Monroe University stolen-data breach affecting 320,973 people
Data LeakAbout this happening: The **Monroe University data leak** now has a confirmed scope of **320,973 affected individuals**, raising the risk of identity theft and account abuse. Attackers accessed the uni...
LKQ personal data exposure
Data Leak
First: 17.12.2025 13:00
Last: 17.12.2025 13:00
Sources 1
About this happening:
**LKQ** disclosed a **personal data exposure** affecting **more than 9,070 people** after a cyber-attack against its **Oracle E-Business Suite** environment. The compromised recor...
LKQ personal data exposure
Data LeakAbout this happening: **LKQ** disclosed a **personal data exposure** affecting **more than 9,070 people** after a cyber-attack against its **Oracle E-Business Suite** environment. The compromised recor...
University of Phoenix hit by network compromise
Incident
First: 03.12.2025 15:23
Last: 03.12.2025 15:23
Sources 1
About this happening:
**University of Phoenix** disclosed a **data breach** after attackers accessed its **Oracle E-Business Suite (EBS)** financial application during **August 13-22, 2025**. The schoo...
University of Phoenix hit by network compromise
IncidentAbout this happening: **University of Phoenix** disclosed a **data breach** after attackers accessed its **Oracle E-Business Suite (EBS)** financial application during **August 13-22, 2025**. The schoo...
Latest development: 23.12.2025 18:00
Notification letters submitted to the Maine Attorney General’s Office and affected individuals on Monday confirmed that 3,489,274 individuals were affected, including 9131 Maine residents. The compromised data included names, contact information, dates of birth, Social Security numbers, and bank account and routing numbers, and University of Phoenix is offering 12 months of credit monitoring, identity theft recovery assistance, dark web monitoring, and a $1m fraud reimbursement policy.
Timeline
-
13.11.2025 18:00 1 articles · 6mo ago
Bad actor claims access to The Washington Post Oracle applications
Initial DisclosureA bad actor contacted The Washington Post and claimed to have gained access to its Oracle E-Business Suite applications, prompting the organization to launch a thorough investigation with outside experts into whether its Oracle application environment had been accessed without authorization.
Show sources
- Washington Post data breach impacts nearly 10K employees, contractors — www.bleepingcomputer.com — 13.11.2025 18:00
-
13.11.2025 18:00 1 articles · 6mo ago
Investigation concludes with data exposure findings
Technical Analysis UpdateThe Washington Post's investigation concluded that data belonging to 9,720 employees and contractors had been compromised, including full names, bank account numbers and routing numbers, Social Security numbers, and tax and ID numbers.
Show sources
- Washington Post data breach impacts nearly 10K employees, contractors — www.bleepingcomputer.com — 13.11.2025 18:00
-
13.11.2025 18:00 1 articles · 6mo ago
Impacted employees and contractors receive exposure notice and identity protection
Victim Impact UpdateThe Washington Post notified nearly 10,000 employees and contractors that personal and financial data had been exposed in the Oracle data theft attack and offered 12 months of free identity protection through IDX, along with guidance to consider a security freeze and fraud alerts.
Show sources
- Washington Post data breach impacts nearly 10K employees, contractors — www.bleepingcomputer.com — 13.11.2025 18:00
-
13.11.2025 18:00 1 articles · 6mo ago
Clop linked to The Washington Post Oracle breach
Attribution UpdateThe Clop ransomware group has been linked to the Oracle E-Business Suite intrusion affecting The Washington Post, and the zero-day exploited in the campaign is now tracked as CVE-2025-61884.
Show sources
- Washington Post data breach impacts nearly 10K employees, contractors — www.bleepingcomputer.com — 13.11.2025 18:00