Find notable cyber news and cases, enriched with sources, timelines, and signals.
Home Browse News Feed Stats Watchlists Beta About Contact

Cox Enterprises stolen data published on dark web leak site

Data Leak
First reported
Last updated
Happening score
H score 57
1 unique sources, 1 articles

Summary

Hide ▲

Cox Enterprises had stolen information posted on a dark web leak site, turning the breach into a public exposure event for impacted individuals. The leak was posted on October 27, 2025, extending the risk of misuse beyond the original intrusion. The publication increases the chance of fraud, extortion, and follow-on targeting.

Related Happenings

ShellForce-affiliated leak site publishes stolen identity, corporate, and résumé records

Data Leak
First: 09.02.2026 23:14 Last: 09.02.2026 23:14 Sources 1

About this happening: A **ShellForce**-affiliated leak site is publicly posting **stolen identity records**, **corporate data**, and **résumé databases**, turning intrusions into immediate exposure ris...

Open Happening

Korean Air employee data leak via KC&D breach

Data Leak
First: 29.12.2025 15:08 Last: 29.12.2025 15:08 Sources 1

About this happening: The airline disclosed a **data breach** that exposed employee **names** and **bank account numbers**, creating fraud and impersonation risk for **Korean Air** staff. The leak foll...

Open Happening

LKQ personal data exposure

Data Leak
First: 17.12.2025 13:00 Last: 17.12.2025 13:00 Sources 1

About this happening: **LKQ** disclosed a **personal data exposure** affecting **more than 9,070 people** after a cyber-attack against its **Oracle E-Business Suite** environment. The compromised recor...

Open Happening

Barts Health NHS Trust invoice leak on Cl0p leak portal

Data Leak
First: 05.12.2025 20:55 Last: 05.12.2025 20:55 Sources 1

About this happening: The **Barts Health NHS Trust** data leak became public when **Cl0p** posted stolen **invoice files** on its **dark-web leak portal**, exposing **full names and addresses** linked...

Latest development: 08.12.2025 11:30

Barts Health NHS Trust is seeking a High Court order to stop the sharing, publication or use of invoice files stolen from its Oracle E-business Suite (EBS) database; the trust says Cl0p posted the files on the dark web, and it is working with NHS England, the National Cyber Security Centre, the Metropolitan Police and regulators including the Information Commissioner’s Office while its clinical systems remain unaffected.

Open Happening

University of Phoenix hit by network compromise

Incident
First: 03.12.2025 15:23 Last: 03.12.2025 15:23 Sources 1

About this happening: **University of Phoenix** disclosed a **data breach** after attackers accessed its **Oracle E-Business Suite (EBS)** financial application during **August 13-22, 2025**. The schoo...

Latest development: 23.12.2025 18:00

Notification letters submitted to the Maine Attorney General’s Office and affected individuals on Monday confirmed that 3,489,274 individuals were affected, including 9131 Maine residents. The compromised data included names, contact information, dates of birth, Social Security numbers, and bank account and routing numbers, and University of Phoenix is offering 12 months of credit monitoring, identity theft recovery assistance, dark web monitoring, and a $1m fraud reimbursement policy.

Open Happening

Timeline

  1. 22.11.2025 17:16 1 articles · 6mo ago

    Cox Enterprises detects suspicious Oracle E-Business Suite activity

    Detection Ioc Update

    On September 29, 2025, Cox Enterprises became aware of suspicious activity involving Oracle E-Business Suite and launched an internal investigation into the unauthorized access tied to the company network compromise.

    Show sources
    Open in new tab
  2. 22.11.2025 17:16 1 articles · 6mo ago

    Oracle patches CVE-2025-61882 in Oracle E-Business Suite

    Mitigation Patch Update

    On October 5, 2025, Oracle released a patch for CVE-2025-61882 in Oracle E-Business Suite, closing the previously unknown flaw that attackers later exploited as a zero-day against multiple organizations.

    Show sources
    Open in new tab
  3. 22.11.2025 17:16 2 articles · 6mo ago

    Cox Enterprises data is published on a dark web leak site

    Victim Impact Update

    On October 27, 2025, Cl0p added Cox Enterprises to its dark web data leak website and published stolen information taken from the company's network, making the exposed personal data publicly available for misuse.

    Show sources
    Open in new tab
  4. 22.11.2025 02:00 1 articles · 6mo ago

    Cox Enterprises notifies 9,479 impacted individuals

    Initial Disclosure

    Cox Enterprises notified 9,479 impacted individuals that hackers had accessed Oracle E-Business Suite and exposed personal data, and the company offered 12 months of identity theft protection and credit monitoring through IDX at no cost.

    Show sources
    Open in new tab