Skip to content
Money MattersStay Safe Online with Wise Learner HubExplore Business Insights and TrendsUnveil the Future of Tech

Oracle Warns EBS Customers of Large-Scale Email Extortion Campaign

Oracle's EBS customers targeted in a sophisticated extortion campaign. Urgent patching needed to protect against nine critical vulnerabilities.

 and  Administrator
1 min read
there was a room in which people are sitting in the chairs,in front of a table looking into the...
there was a room in which people are sitting in the chairs,in front of a table looking into the laptop and doing something,beside them there are many flee xi in which different advertisements are present which different text.

Oracle Warns EBS Customers of Large-Scale Email Extortion Campaign

Oracle has alerted its customer base about a widespread email extortion scheme, connected to the FIN11 threat group, which has targeted numerous compromised accounts. The tech giant, through its Security CSO Rob Duhart, has urged customers to promptly apply the July 2025 Critical Patch Update to safeguard their systems. The campaign, investigated by Google and Mandiant, has seen malicious emails sent to executives in various companies, claiming to have stolen sensitive data from Oracle's E-Business Suite (EBS). These emails contain contact details matching those listed on the Clop ransomware group's data leak site, suggesting a possible connection to the group. Oracle has advised affected organizations to proactively investigate their systems for signs of compromise. Duhart confirmed that some Oracle EBS customers have received these extortion emails. Unfortunately, there is no specific information available about companies that have not updated their Oracle E-Business Suite solutions following the July 2025 Critical Patch Update. The update includes nine flaws affecting Oracle's EBS, three of which are critical and three others are exploitable remotely without authentication. Oracle has warned that hackers may be exploiting vulnerabilities in unpatched instances of its EBS. Customers are urged to prioritize patching the following vulnerabilities: CVE-2025-30743, CVE-2025-30744, CVE-2025-50105, CVE-2025-50071, CVE-2025-30746, CVE-2025-30745, CVE-2025-50107, CVE-2025-30739, and CVE-2025-50090. Oracle EBS customers are advised to take immediate action to protect their systems, including applying the July 2025 Critical Patch Update and proactively investigating their systems for signs of compromise. The extortion campaign, linked to the FIN11 threat group and potentially the Clop ransomware group, underscores the importance of regular patching and robust cybersecurity measures.

Read also:

Related

Latest