Madison Square Garden hit by network compromise linked to Cl0p
Incident
Summary
Hide ▲
Show ▼
Madison Square Garden confirmed a data breach that exposed names and SSNs, and it has started notifying affected people. The compromise involved a hosted Oracle E-Business Suite instance managed by a third-party vendor. Hackers stole the data in August 2025, and MSG says 11 Maine residents were impacted. The breach is linked to the broader Cl0p Oracle EBS extortion campaign, making the incident a confirmed victim-facing disclosure event.
Related Happenings
Cl0p Oracle E-Business Suite zero-day extortion campaign
Campaign
First: 02.03.2026 15:53
Last: 02.03.2026 15:53
Sources 1
How related:
In the Oracle EBS hacking campaign, the Cl0p ransomware and extortion group exploited zero-day vulnerabilities to gain access to data stored by more than 100 organizations in the enterprise management software.
About this happening:
The **Cl0p ransomware and extortion group** is running an **Oracle E-Business Suite** extortion campaign that used **zero-day vulnerabilities** to access data from **more than 100...
Cl0p Oracle E-Business Suite zero-day extortion campaign
CampaignHow related: In the Oracle EBS hacking campaign, the Cl0p ransomware and extortion group exploited zero-day vulnerabilities to gain access to data stored by more than 100 organizations in the enterprise management software.
About this happening: The **Cl0p ransomware and extortion group** is running an **Oracle E-Business Suite** extortion campaign that used **zero-day vulnerabilities** to access data from **more than 100...
Wynn Resorts hit by cyberattack
Incident
First: 24.02.2026 23:51
Last: 24.02.2026 23:51
Sources 1
About this happening:
**Wynn Resorts** confirmed an **employee data breach** after an unauthorized third party stole data from its systems, creating exposure risk for staff records. The company said it...
Wynn Resorts hit by cyberattack
IncidentAbout this happening: **Wynn Resorts** confirmed an **employee data breach** after an unauthorized third party stole data from its systems, creating exposure risk for staff records. The company said it...
Ingram Micro hit by ransomware attack
Incident
First: 19.01.2026 15:33
Last: 19.01.2026 15:33
Sources 1
About this happening:
**Ingram Micro** disclosed a **ransomware attack** that led to **unauthorized file theft** from internal repositories and a breach affecting **over 42,000 individuals**. The incid...
Ingram Micro hit by ransomware attack
IncidentAbout this happening: **Ingram Micro** disclosed a **ransomware attack** that led to **unauthorized file theft** from internal repositories and a breach affecting **over 42,000 individuals**. The incid...
ShinyHunters Salesforce extortion campaign against global companies in 2025
Campaign
First: 15.01.2026 17:45
Last: 15.01.2026 17:45
Sources 1
About this happening:
The **ShinyHunters** campaign now includes a **Qantas** breach disclosed after the airline found a **June 30, 2025** intrusion in a **third-party platform** used by one customer s...
ShinyHunters Salesforce extortion campaign against global companies in 2025
CampaignAbout this happening: The **ShinyHunters** campaign now includes a **Qantas** breach disclosed after the airline found a **June 30, 2025** intrusion in a **third-party platform** used by one customer s...
Rising encryptionless extortion incidents against enterprises in 2025
Target Trend
First: 15.01.2026 17:45
Last: 15.01.2026 17:45
Sources 1
About this happening:
**Encryptionless extortion** surged in **2025** as attackers increasingly skipped ransomware encryption and instead stole data to pressure victims across **enterprise environments...
Rising encryptionless extortion incidents against enterprises in 2025
Target TrendAbout this happening: **Encryptionless extortion** surged in **2025** as attackers increasingly skipped ransomware encryption and instead stole data to pressure victims across **enterprise environments...
Timeline
-
02.03.2026 15:53 2 articles · 2mo ago
MSG confirms Oracle EBS data breach and begins notifications
Initial DisclosureMadison Square Garden confirmed being impacted by a data breach tied to the Cl0p Oracle E-Business Suite (EBS) campaign, said personal information including names and SSNs was compromised, and began notifying affected individuals after a third-party vendor investigation found that data was stolen in August 2025; MSG also told the Maine Attorney General’s Office that 11 Maine residents are impacted.
Show sources
- Madison Square Garden Data Breach Confirmed Months After Hacker Attack — www.securityweek.com — 02.03.2026 15:53
- Madison Square Garden Data Breach Confirmed Months After Hacker Attack — www.securityweek.com — 02.03.2026 15:53