Clop ransomware group is targeting Oracle customers with extortion emails, demanding payments in exchange for not releasing stolen data. These emails are part of a broader trend of ransomware attacks aimed at various organizations, highlighting the ongoing threat of cyber extortion in the corporate sector.

A new large-scale extortion campaign targeting Oracle E-Business Suite (EBS) was uncovered, linked to the CL0P extortion group. The campaign involved exploiting zero-day vulnerabilities to exfiltrate sensitive data from organizations and sending extortion emails to executives demanding payment to prevent data release. Oracle has issued multiple patches to address these vulnerabilities, with evidence suggesting prolonged exploitation efforts prior to the recent attacks.