Cox Enterprises has reported a data breach affecting nearly 9,500 individuals, tied to a zero-day vulnerability in Oracle's E-Business Suite. The breach occurred between August 9 and 14, 2025, but the company didn't uncover it until late September. The attackers exploited an unknown flaw, which led to the compromise of personal data. Cl0p ransomware has claimed responsibility for the attack, exploiting the vulnerability before Oracle released a patch on October 5. Cox Enterprises, a large conglomerate with 55,000 employees and $23 billion in annual revenue, has not detailed the specific types of data exposed. However, they are offering impacted individuals 12 months of free identity theft protection and credit monitoring through IDX. The breach is part of a larger trend, with Cl0p previously exploiting zero-day vulnerabilities in various well-known software systems. The threat actors have also added Cox to their dark web data leak site, reflecting an ongoing pattern of targeting significant organizations across multiple sectors.