Oracle warns of security bug that hackers abused to breach 100+ companies

Four Major Companies Remain Silent on Oracle EBS Hack

TrendWatcher AI (Enhanced)·2d ago·neutral

Most covered nowLIVEsee all →

GoogletechHot20 stories LitecoincryptoHot20 stories Bitcoin Paradexcrypto10 stories Altcoin Seasoncrypto10 stories Series Macstech10 stories Compound Financecrypto9 stories Polkadotcrypto10 stories How Americans Caught Gold Fever Againtech10 stories

Major firms Broadcom, Bechtel, Estée Lauder and Abbott have not commented on the Oracle E‑Business Suite breach that Cl0p claims affected dozens of

The Cl0p ransomware group has publicly linked a large‑scale data‑exfiltration campaign to Oracle’s E‑Business Suite (EBS) software, naming over 100 victims across multiple sectors [1]. Among the most prominent organizations listed, four corporate giants—Broadcom, Bechtel, Estée Lauder Companies and Abbott Laboratories—have not issued any public comment or confirmation of an investigation [1].

Key takeaways

Cl0p claims to have stolen terabytes of data from the four silent firms, with more than 2 TB allegedly from Broadcom and 870 GB from Estée Lauder [1].
The campaign exploits zero‑day vulnerabilities in Oracle EBS, a flaw first patched by Oracle on Oct. 4, 2025 [2][4].
Several high‑profile victims, including the University of Phoenix and The Washington Post, have confirmed breaches or are under investigation [2][3].
Analysts suggest the extortion emails may be a pressure tactic, and the true scale of the breach remains unverified [4].

Silent giants and the data claimed to be leaked

The Cl0p leak site lists Broadcom, a semiconductor and infrastructure software company, as having more than 2 TB of archive files attributed to it [1]. Estée Lauder’s entry points to 870 GB of data, while torrents for Bechtel and Abbott remain accessible, though no files have been retrieved for analysis [1]. SecurityWeek’s metadata review confirmed that the file structures match an Oracle EBS environment, but the organization has not downloaded the data itself [1].

The lack of statements from these firms contrasts with the broader pattern of public disclosures. Many affected organizations have issued breach notices, often emphasizing limited impact and offering identity‑protection services, as seen with the University of Phoenix, which reported exposure of names, Social Security numbers and bank details for millions of students and staff [2]. The Washington Post also confirmed a breach linked to the same Oracle vulnerabilities [3].

Extortion tactics and uncertainty over breach scope

Cl0p’s strategy involves sending extortion emails that claim the theft of financial and operational data from Oracle EBS, demanding payments that can reach up to $50 million [4]. The emails provide proof of compromise, such as file‑tree listings, but security researchers note that no concrete evidence of the alleged data volume has been published [4]. Oracle has acknowledged awareness of the extortion messages and is assisting customers, yet it has not confirmed any data theft [4].

Analysts warn that the campaign could be a bluff designed to extract payments, noting that ransomware groups often exaggerate breach scope to pressure victims [1]. The silence of Broadcom, Bechtel, Estée Lauder and Abbott may stem from strategic, legal or reputational considerations, as acknowledging an investigation could invite lawsuits or regulatory scrutiny [1].

Keep reading

Oracle warns of security bug that hackers abused to breach 100+ companiesCISA Warns of Active Exploitation of Oracle WebLogic FlawTrendWatcher AI (Enhanced) · 2d ago Oracle warns of security bug that hackers abused to breach 100+ companiesCl0p exploits Oracle E‑Business Suite zero‑day, extorts hundreds ofTrendWatcher AI (Enhanced) · 2d ago Oracle warns of security bug that hackers abused to breach 100+ companiesOracle warns of critical PeopleSoft bug exploited by ShinyHuntersTrendWatcher AI (Enhanced) · 2d ago Oracle warns of security bug that hackers abused to breach 100+ companiesOracle PeopleSoft zero‑day exploited in mass hack of 100+ firmsTrendWatcher AI (Enhanced) · 2d ago Oracle warns of security bug that hackers abused to breach 100+ companiesGoogle confirms Oracle breach affecting over 100 companiesTrendWatcher AI (Enhanced) · 2d ago Oracle warns of security bug that hackers abused to breach 100+ companiesCybercrime gang ShinyHunters linked to Oracle PeopleSoft and MICROSTrendWatcher AI (Enhanced) · 2d ago

Coming upLIVEsee all →

JUN 15 · all day UTCcryptoStarknet Token Unlock JUN 16 · all day UTCcryptoArbitrum Token Unlock JUN 17 · all day UTCcryptoApeCoin Token Unlock JUN 17 · all day UTCcryptozkSync Token Unlock JUN 17 · 18:00 UTCmacroFOMC Rate Decision

Across the coverage

Coverage is mostly measured — 7 of 7 reports stay neutral.

Neutral 7

The Catalyst Brief

Know what’s about to move the market.

Every Monday — the token unlocks, Fed dates & catalysts set to move crypto and markets this week. So you’re never blindsided.

Free · 3-min read · one-click unsubscribe

Synthesized from 4 sources

Published

Jun 11, 2026, 09:12 PM

Source

TrendWatcher AI (Enhanced)

Frequently asked · Oracle warns of security bug that hackers abused to breach 100+ companies

What software is affected by these security breaches?

Reports indicate that vulnerabilities were exploited in Oracle's PeopleSoft and E-Business Suite (EBS) platforms.

How are the attackers gaining access to corporate systems?

Attackers are exploiting software vulnerabilities to gain unauthorized access, often without requiring authentication, and deploying malicious implants to steal data.

What should organizations using Oracle software do?

Oracle and security experts recommend that customers immediately apply the latest security patches and mitigations to protect their systems from exploitation.

Explore More

Ethereum Bitcoin OpenAI Tesla Fed Rates Layer 2 Scaling