Find notable cyber news and cases, enriched with sources, timelines, and signals.

Cl0p Oracle E-Business Suite zero-day extortion campaign

Campaign
First reported
Last updated
Happening score
H score 37
1 unique sources, 1 articles

Summary

Hide ▲

The Cl0p ransomware and extortion group is running an Oracle E-Business Suite extortion campaign that used zero-day vulnerabilities to access data from more than 100 organizations. The operation targets customers of the enterprise management software and shows broad exposure across a widely used business platform. Its scale makes the campaign a systemic risk for organizations using Oracle EBS.

Related Happenings

Oracle PeopleSoft broad zero-day exploitation campaign

Exploitation Wave
H score82 First: 29.06.2026 13:00 Last: 29.06.2026 13:00 Sources 1

About this happening: A **broad PeopleSoft zero-day exploitation campaign** exposed **multiple organizations** to compromise after attackers abused a **previously unknown Oracle PeopleSoft vulnerabilit...

Oracle Identity Manager and Oracle Web Services Manager unauthenticated RCE (CVE-2026-21992)

Vulnerability
H score42 First: 20.03.2026 20:48 Last: 20.03.2026 20:48 Sources 1

About this happening: Oracle issued an **out-of-band update** to fix **CVE-2026-21992**, a **critical unauthenticated remote code execution** flaw in **Oracle Identity Manager** and **Oracle Web Servic...

Madison Square Garden hit by network compromise linked to Cl0p

Incident
H score38 First: 02.03.2026 15:53 Last: 02.03.2026 15:53 Sources 1

How related: Madison Square Garden has confirmed being impacted by a data breach stemming from a cybercrime campaign targeting customers of Oracle’s E-Business Suite (EBS) solution.

About this happening: **Madison Square Garden** confirmed a **data breach** that exposed **names and SSNs**, and it has started notifying affected people. The compromise involved a **hosted Oracle E-Bu...

ZAST.AI $6 million Pre-A funding round

Industry Action
H score15 First: 10.02.2026 13:40 Last: 10.02.2026 13:40 Sources 1

About this happening: **ZAST.AI** completed a **$6 million Pre-A funding round** backed by **Hillhouse Capital**, giving the cybersecurity vendor more capital to scale its AI-powered code security plat...

TikTok U.S. joint venture under September 2025 executive order

Public Sector Action
H score77 First: 23.01.2026 13:30 Last: 23.01.2026 13:30 Sources 1

About this happening: The U.S.-backed **TikTok USDS Joint Venture LLC** now lets **TikTok** keep operating in the **U.S.**, changing ownership and security oversight for a platform used by **over 200 m...

Timeline

  1. 02.03.2026 15:53 2 articles · 4mo ago

    Cl0p Oracle E-Business Suite zero-day extortion campaign

    Initial Disclosure

    The operation began by exploiting **zero-day vulnerabilities** in **Oracle E-Business Suite** to reach customer data at scale. That initial access established a broad extortion campaign affecting a shared enterprise platform.

    Show sources