Dark Reading

Oracle EBS Attack Victims May Be More Numerous Than Expected

The list of enterprises targeted by recent Oracle EBS attacks may also include Schneider Electric, Pan American Steel, and Cox Enterprises. Earlier this month, the infamous ransomware-as-a-service ...
Bleeping Computer

CISA confirms hackers exploited Oracle E-Business Suite SSRF flaw

CISA has confirmed that an Oracle E-Business Suite flaw tracked as CVE-2025-61884 is being exploited in attacks, adding it to its Known Exploited Vulnerabilities catalog. BleepingComputer previously ...
CRN

CISA: Oracle E-Business Suite Vulnerability Exploited In Ransomware Attacks

Oracle had initially disclosed the vulnerability earlier this month, though without providing any details about exploitation. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has ...
SecurityWeek

Industrial Giants Schneider Electric and Emerson Named as Victims of Oracle Hack

Industrial giants Schneider Electric and Emerson have been named by cybercriminals as victims of the recent campaign targeting Oracle E-Business Suite (EBS) instances. Threat actors, presumably a ...
CPO Magazine

Harvard and Envoy Airlines Breached via Oracle’s E-Business Suite Zero-Day Vulnerability

Harvard University and Envoy have confirmed they were breached via zero-day vulnerability in Oracle’s E-Business Suite (EBS) products. CVE-2025-61882 is a critical vulnerability (CVSS v3 9.8) in the ...