Google Threat Intelligence Group claims that Russian hackers associated with the Clop group stole data from «dozens of organizations» through security vulnerabilities in Oracle E-Business Suite software.
Google Threat Intelligence Group claims that Russian hackers associated with the Clop group stole data from «dozens of organizations» through security vulnerabilities in Oracle E-Business Suite software.
As reported on the Google blog, on October 2, Oracle reported that attackers may have exploited vulnerabilities that were patched in July 2025 and recommended that customers install the latest critical updates.
On October 4, Oracle instructed customers to install hotfixes to address this vulnerability, reiterating its recommendation that customers stay up to date with all critical updates.
Hackers managed to compromise Oracle’s business software, which allows companies to manage their operations and is responsible for storing customer data and the HR files of their employees.
Google’s blog post says that the hacking campaign targeting Oracle customers began on July 10, about three months before the attacks were first discovered.
Google Threat Intelligence Group specialists analyzed in detail how the hacker attack took place and what vulnerabilities were exploited.
Previously, dev.ua reported that OpenAI had identified and blocked hackers from Russia, China, and North Korea who were using ChatGPT for cyberattacks.
