Cox Enterprises hit by network compromise linked to Cl0p
Incident
Summary
Hide ▲
Show ▼
Cox Enterprises disclosed a data breach that exposed personal data after attackers used a zero-day flaw in Oracle E-Business Suite to breach its network. The compromise occurred in August 2025 and was detected on September 29, 2025, making the intrusion a delayed-discovery incident. The company later notified 9,479 impacted individuals and offered 12 months of identity theft protection and credit monitoring. The breach was also tied to Cl0p activity after the group added Cox Enterprises to its leak site on October 27.
Related Happenings
Madison Square Garden hit by network compromise linked to Cl0p
Incident
First: 02.03.2026 15:53
Last: 02.03.2026 15:53
Sources 1
About this happening:
**Madison Square Garden** confirmed a **data breach** that exposed **names and SSNs**, and it has started notifying affected people. The compromise involved a **hosted Oracle E-Bu...
Madison Square Garden hit by network compromise linked to Cl0p
IncidentAbout this happening: **Madison Square Garden** confirmed a **data breach** that exposed **names and SSNs**, and it has started notifying affected people. The compromise involved a **hosted Oracle E-Bu...
LKQ personal data exposure
Data Leak
First: 17.12.2025 13:00
Last: 17.12.2025 13:00
Sources 1
About this happening:
**LKQ** disclosed a **personal data exposure** affecting **more than 9,070 people** after a cyber-attack against its **Oracle E-Business Suite** environment. The compromised recor...
LKQ personal data exposure
Data LeakAbout this happening: **LKQ** disclosed a **personal data exposure** affecting **more than 9,070 people** after a cyber-attack against its **Oracle E-Business Suite** environment. The compromised recor...
University of Phoenix hit by network compromise
Incident
First: 03.12.2025 15:23
Last: 03.12.2025 15:23
Sources 1
About this happening:
**University of Phoenix** disclosed a **data breach** after attackers accessed its **Oracle E-Business Suite (EBS)** financial application during **August 13-22, 2025**. The schoo...
University of Phoenix hit by network compromise
IncidentAbout this happening: **University of Phoenix** disclosed a **data breach** after attackers accessed its **Oracle E-Business Suite (EBS)** financial application during **August 13-22, 2025**. The schoo...
Latest development: 23.12.2025 18:00
Notification letters submitted to the Maine Attorney General’s Office and affected individuals on Monday confirmed that 3,489,274 individuals were affected, including 9131 Maine residents. The compromised data included names, contact information, dates of birth, Social Security numbers, and bank account and routing numbers, and University of Phoenix is offering 12 months of credit monitoring, identity theft recovery assistance, dark web monitoring, and a $1m fraud reimbursement policy.
Cox Enterprises stolen data published on dark web leak site
Data Leak
First: 22.11.2025 17:16
Last: 22.11.2025 17:16
Sources 1
How related:
The threat actor added Cox Enterprises to their data leak website on the dark web on October 27 and published the stolen information.
About this happening:
**Cox Enterprises** had stolen information posted on a **dark web leak site**, turning the breach into a public exposure event for impacted individuals. The leak was posted on **O...
Cox Enterprises stolen data published on dark web leak site
Data LeakHow related: The threat actor added Cox Enterprises to their data leak website on the dark web on October 27 and published the stolen information.
About this happening: **Cox Enterprises** had stolen information posted on a **dark web leak site**, turning the breach into a public exposure event for impacted individuals. The leak was posted on **O...
Logitech International S. . hit by data theft breach linked to Clop
Incident
First: 15.11.2025 00:18
Last: 15.11.2025 00:18
Sources 1
About this happening:
**Logitech** confirmed a **data breach** that exposed **limited employee, consumer, customer, and supplier data**, creating privacy and extortion risk even though **products and o...
Logitech International S. . hit by data theft breach linked to Clop
IncidentAbout this happening: **Logitech** confirmed a **data breach** that exposed **limited employee, consumer, customer, and supplier data**, creating privacy and extortion risk even though **products and o...
Timeline
-
22.11.2025 17:16 1 articles · 6mo ago
Suspicious activity discovered in Oracle E-Business Suite
Detection Ioc UpdateCox Enterprises became aware of suspicious activity involving Oracle’s E-Business Suite on September 29, 2025 and opened an internal investigation after cybercriminals exploited a previously unknown security flaw in the back-office platform between Aug. 9-14, 2025.
Show sources
- Cox Enterprises discloses Oracle E-Business Suite data breach — www.bleepingcomputer.com — 22.11.2025 17:16
-
22.11.2025 17:16 1 articles · 6mo ago
Cl0p leak-site publication tied to Cox Enterprises
Attribution UpdateCl0p claimed credit for exploiting CVE-2025-61882 as a zero-day in Oracle E-Business Suite, and on October 27, 2025 the group added Cox Enterprises to its dark-web data leak site and published stolen information.
Show sources
- Cox Enterprises discloses Oracle E-Business Suite data breach — www.bleepingcomputer.com — 22.11.2025 17:16
-
22.11.2025 17:16 2 articles · 6mo ago
Cox Enterprises notifies 9,479 impacted individuals
Initial DisclosureOn November 22, 2025, Cox Enterprises notified 9,479 impacted individuals about the data breach and offered 12 months of identity theft protection and credit monitoring through IDX at no cost, while not specifying the exact data types exposed in the sample notice.
Show sources
- Cox Enterprises discloses Oracle E-Business Suite data breach — www.bleepingcomputer.com — 22.11.2025 17:16
- Cox Enterprises discloses Oracle E-Business Suite data breach — www.bleepingcomputer.com — 22.11.2025 17:16