SecurityWeek

CISA Confirms Exploitation of Latest Oracle EBS Vulnerability

CISA has confirmed that an Oracle E-Business Suite (EBS) vulnerability CVE-2025-61884 has been exploited in the wild.
CPO Magazine

Harvard and Envoy Airlines Breached via Oracle’s E-Business Suite Zero-Day Vulnerability

Harvard University and Envoy, an American Airlines subsidiary, have confirmed data breaches linked to a zero-day ...
SecurityWeek

Industrial Giants Schneider Electric and Emerson Named as Victims of Oracle Hack

Schneider Electric and Emerson have been named by cybercriminals as victims of the recent campaign targeting Oracle EBS ...

CISA confirms hackers exploited Oracle E-Business Suite SSRF flaw

CISA has confirmed that an Oracle E-Business Suite flaw tracked as CVE-2025-61884 is being exploited in attacks, adding it to ...
The Hacker News

Five New Exploited Bugs Land in CISA's Catalog — Oracle and Microsoft Among Targets

CISA adds five exploited vulnerabilities, including Oracle, Microsoft, Kentico, and Apple flaws, requiring fixes by Nov 10, 2025.

American Airlines subsidiary Envoy caught in Clop's Oracle EBS raid

Envoy Air, an American Airlines subsidiary, has confirmed that it was among the dozens of organizations compromised via Oracle E-Business Suite (EBS) security flaws, following claims by Clop ...

Envoy Air targeted in Oracle-linked hacking campaign

Envoy Air, American Airlines' largest regional carrier, suffered a hack in recent days as part of the wave of extortion attempts from hackers exploiting Oracle E-Business Suite applications, the ...
Fudzilla

Oracle E-Business Suite hacked in $50 million extortion campaign

Oracle is scrambling to investigate attacks on its E-Business Suite after hackers launched an extortion campaign against major organisations. Insiders said Oracle told staff that criminals had ...

Feds flag active exploitation of patched Windows SMB vuln

The bug, tracked as CVE-2025-33073, was added to CISA's Known Exploited Vulnerabilities (KEV) catalogue on October 20, ...