Logitech confirmed a data breach linked to a zero-day attack, becoming one of several victims in the Oracle EBS campaign associated with the Cl0p ransomware group. The breach reportedly involved around 1.8 TB of data, which may contain limited information about employees, consumers, customers, and suppliers. Logitech reassured stakeholders that sensitive personal data, such as national ID numbers and credit card information, was not stored in the compromised system. The company believes the breach will not significantly affect its financial health or operations. Logitech has not disclosed the third-party platform that was targeted, but it mentioned that it maintains a comprehensive cybersecurity insurance policy to cover incident response costs, potential legal actions, and regulatory fines. The Cl0p group has named over 50 victims publicly, including major organizations like The Washington Post and American Airlines subsidiary Envoy Air. Although the specific vulnerabilities exploited in this attack remain unclear, two Oracle EBS zero-days, CVE-2025-61884 and CVE-2025-618842, are under scrutiny. The incident has also drawn attention to the wider implications of the attack, with cybersecurity experts linking the Cl0p campaign to the threat actor group FIN11, which has conducted similar operations against various file transfer products. As investigations continue, the focus is expected to shift toward understanding the vulnerabilities and enhancing defenses against such sophisticated cyber threats.