Oracle

Oracle Patches EBS Vulnerability Allowing Access to Sensitive Data

Oracle Patches EBS Vulnerability Allowing Access to Sensitive Data 2025-10-13 at 16:03 By Eduard Kovacs It’s unclear if the new Oracle E-Business Suite flaw, which can be exploited remotely without authentication, has been used in the wild.   The post Oracle Patches EBS Vulnerability Allowing Access to Sensitive Data appeared first on SecurityWeek. This article is […]

Oracle Patches EBS Vulnerability Allowing Access to Sensitive Data Read More »

Another remotely exploitable Oracle EBS vulnerability requires your attention (CVE-2025-61884)

Another remotely exploitable Oracle EBS vulnerability requires your attention (CVE-2025-61884) 2025-10-12 at 13:18 By Zeljka Zorz Oracle has revealed the existence of yet another remotely exploitable Oracle E-Business Suite vulnerability (CVE-2025-61884). About CVE-2025-61884 CVE-2025-61884 is a vulnerability in the Runtime user interface in the Oracle Configurator product of Oracle E-Business Suite (EBS). Like CVE-2025-61882 before

Another remotely exploitable Oracle EBS vulnerability requires your attention (CVE-2025-61884) Read More »

Leaked Oracle EBS exploit scripts expected to drive new wave of attacks (CVE-2025-61882)

Leaked Oracle EBS exploit scripts expected to drive new wave of attacks (CVE-2025-61882) 2025-10-07 at 15:36 By Zeljka Zorz Resecurity and watchTowr researchers have analyzed the leaked scripts used by attackers to exploit CVE-2025-61882 on internet-facing Oracle ESB instances. Whether the attackers were Cl0p or LAPSUS$, both, or even additional threat actors is still unknown,

Leaked Oracle EBS exploit scripts expected to drive new wave of attacks (CVE-2025-61882) Read More »

Cl0p exploits Oracle E-Business Suite zero-day in data theft, extortion campaign (CVE-2025-61882)

Cl0p exploits Oracle E-Business Suite zero-day in data theft, extortion campaign (CVE-2025-61882) 2025-10-06 at 15:28 By Zeljka Zorz The Cl0p extortion gang exploited multiple Oracle E-Business Suite (EBS) vulnerabilities, including one zero-day flaw (CVE-2025-61882), “to steal large amounts of data from several victim[s] in August 2025,” Charles Carmakal, CTO at Mandiant – Google Cloud, stated

Cl0p exploits Oracle E-Business Suite zero-day in data theft, extortion campaign (CVE-2025-61882) Read More »

Oracle Says Known Vulnerabilities Possibly Exploited in Recent Extortion Attacks

Oracle Says Known Vulnerabilities Possibly Exploited in Recent Extortion Attacks 2025-10-03 at 13:13 By Eduard Kovacs The software giant’s investigation showed that vulnerabilities patched in July 2025 may be involved. The post Oracle Says Known Vulnerabilities Possibly Exploited in Recent Extortion Attacks appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original

Oracle Says Known Vulnerabilities Possibly Exploited in Recent Extortion Attacks Read More »

Oracle customers targeted with emails claiming E-Business Suite breach, data theft

Oracle customers targeted with emails claiming E-Business Suite breach, data theft 2025-10-02 at 16:19 By Zeljka Zorz Unknown attackers claiming affiliation with the Cl0p extortion gang are hitting business and IT executives at various companies with emails claiming that they have exfiltrated sensitive data from the firms’ Oracle E-Business Suite (EBS). The email campaign According

Oracle customers targeted with emails claiming E-Business Suite breach, data theft Read More »

Cybercriminals Claim Theft of Data From Oracle E-Business Suite Customers

Cybercriminals Claim Theft of Data From Oracle E-Business Suite Customers 2025-10-02 at 13:35 By Eduard Kovacs The attackers are claiming to be affiliated with the notorious Cl0p ransomware group and links have been found to FIN11. The post Cybercriminals Claim Theft of Data From Oracle E-Business Suite Customers appeared first on SecurityWeek. This article is

Cybercriminals Claim Theft of Data From Oracle E-Business Suite Customers Read More »

Oracle Patches 200 Vulnerabilities With July 2025 CPU

Oracle Patches 200 Vulnerabilities With July 2025 CPU 2025-07-17 at 10:37 By Ionut Arghire Oracle’s July 2025 Critical Patch Update contains 309 security patches that address approximately 200 unique CVEs. The post Oracle Patches 200 Vulnerabilities With July 2025 CPU appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

Oracle Patches 200 Vulnerabilities With July 2025 CPU Read More »

CISA Issues Guidance After Oracle Cloud Hack

CISA Issues Guidance After Oracle Cloud Hack 2025-04-17 at 14:05 By Eduard Kovacs CISA is making recommendations for organizations and users in light of the recent Oracle legacy cloud environment hack. The post CISA Issues Guidance After Oracle Cloud Hack appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

CISA Issues Guidance After Oracle Cloud Hack Read More »

Oracle Patches 180 Vulnerabilities With April 2025 CPU

Oracle Patches 180 Vulnerabilities With April 2025 CPU 2025-04-16 at 14:01 By Ionut Arghire Oracle’s April 2025 Critical Patch Update contains 378 security patches that resolve approximately 180 unique CVEs. The post Oracle Patches 180 Vulnerabilities With April 2025 CPU appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View Original Source

Oracle Patches 180 Vulnerabilities With April 2025 CPU Read More »

Oracle Faces Mounting Criticism as It Notifies Customers of Hack

Oracle Faces Mounting Criticism as It Notifies Customers of Hack 2025-04-09 at 13:43 By Eduard Kovacs Oracle is sending out written notifications to customers over the recent hack after it initially appeared to completely deny a data breach. The post Oracle Faces Mounting Criticism as It Notifies Customers of Hack appeared first on SecurityWeek. This

Oracle Faces Mounting Criticism as It Notifies Customers of Hack Read More »

Security Firms Say Evidence Seems to Confirm Oracle Cloud Hack

Security Firms Say Evidence Seems to Confirm Oracle Cloud Hack 2025-03-26 at 12:24 By Eduard Kovacs Despite Oracle categorically denying that its Cloud systems have been breached, sample data released by the hacker seems to prove otherwise. The post Security Firms Say Evidence Seems to Confirm Oracle Cloud Hack appeared first on SecurityWeek. This article

Security Firms Say Evidence Seems to Confirm Oracle Cloud Hack Read More »

Oracle Denies Cloud Breach After Hacker Offers to Sell Data 

Oracle Denies Cloud Breach After Hacker Offers to Sell Data  2025-03-24 at 18:01 By Eduard Kovacs Oracle has denied that Cloud systems have been breached after a hacker claimed to have stolen millions of records. The post Oracle Denies Cloud Breach After Hacker Offers to Sell Data  appeared first on SecurityWeek. This article is an

Oracle Denies Cloud Breach After Hacker Offers to Sell Data  Read More »

CISA Warns of Attacks Exploiting Oracle Agile PLM Vulnerability

CISA Warns of Attacks Exploiting Oracle Agile PLM Vulnerability 2025-02-25 at 13:43 By Eduard Kovacs CISA has added CVE-2024-20953, an Oracle Agile PLM vulnerability patched in January 2024, to its KEV catalog.  The post CISA Warns of Attacks Exploiting Oracle Agile PLM Vulnerability appeared first on SecurityWeek. This article is an excerpt from SecurityWeek View

CISA Warns of Attacks Exploiting Oracle Agile PLM Vulnerability Read More »

Oracle Linux 9 Update 5 brings security updates, OpenJDK 17, .NET 9.0

Oracle Linux 9 Update 5 brings security updates, OpenJDK 17, .NET 9.0 2024-11-20 at 15:42 By Help Net Security Oracle Linux offers a secure, streamlined platform for deploying and managing applications across on-premises, cloud, and edge environments. Designed for demanding workloads, it includes tools for automation, virtualization, high availability, cloud-native development, Kubernetes, and more. Oracle

Oracle Linux 9 Update 5 brings security updates, OpenJDK 17, .NET 9.0 Read More »

Oracle patches exploited Agile PLM vulnerability (CVE-2024-21287)

Oracle patches exploited Agile PLM vulnerability (CVE-2024-21287) 2024-11-19 at 12:48 By Zeljka Zorz Oracle has released a security patch for CVE-2024-21287, a remotely exploitable vulnerability in the Oracle Agile PLM Framework that is, according to Tenable researchers, being actively exploited by attackers. About CVE-2024-21287 Oracle Agile PLM Framework is an enterprise product lifecycle management solution

Oracle patches exploited Agile PLM vulnerability (CVE-2024-21287) Read More »

The Cloud Latency Map measures latency across 100+ cloud regions

The Cloud Latency Map measures latency across 100+ cloud regions 2024-10-29 at 16:03 By Industry News Kentik launched The Cloud Latency Map, a free public tool allowing anyone to explore the latencies measured between over 100 cloud regions worldwide. Users can identify recent changes in latencies globally between various public clouds and data center regions

The Cloud Latency Map measures latency across 100+ cloud regions Read More »

VirtualBox 7.1: This is a major update, here’s what’s new

VirtualBox 7.1: This is a major update, here’s what’s new 2024-09-12 at 10:47 By Help Net Security VirtualBox is a full virtualizer for x86 hardware designed for servers, desktops, and embedded systems. VirtualBox 7.1 introduces an enhanced user interface, cloud VM management, ARM support, Wayland compatibility, and more. New features in VirtualBox 7.1 This is

VirtualBox 7.1: This is a major update, here’s what’s new Read More »

Oracle Patches 240 Vulnerabilities With July 2024 CPU

Oracle Patches 240 Vulnerabilities With July 2024 CPU 2024-07-17 at 13:01 By Ionut Arghire Oracle releases 386 new security patches to resolve roughly 240 unique CVEs as part of its July 2024 Critical Patch Update. The post Oracle Patches 240 Vulnerabilities With July 2024 CPU appeared first on SecurityWeek. This article is an excerpt from

Oracle Patches 240 Vulnerabilities With July 2024 CPU Read More »

Scroll to Top