Oracle E-Business Suite Hit by Zero-Day Exploit Amid Clop Ransomware Campaign

On October 2, 2025, the cybersecurity community is on high alert as Oracle's E-Business Suite has been targeted by hackers exploiting a zero-day vulnerability, identified as CVE-2025-61882. This vulnerability was disclosed by the Google Threat Intelligence Group, which reported that the Clop ransomware group has been sending extortion emails to executives, claiming to have stolen sensitive data from multiple organizations. In response, Oracle has issued an emergency patch to mitigate the threat. The implications of this breach are significant, as it not only affects Oracle's enterprise customers but also highlights the increasing sophistication of ransomware attacks and the urgent need for organizations to strengthen their cybersecurity defenses. The CVSS score for CVE-2025-61882 remains unassigned, but its critical nature warrants immediate attention from IT security teams worldwide. Organizations using Oracle's E-Business Suite should prioritize applying the emergency patch and review their security postures in light of this incident.

Also In Security Today

• CISA Flags Critical Vulnerabilities: The U.S. Cybersecurity and Infrastructure Security Agency has added three vulnerabilities to its list of actively exploited issues, including a critical deserialization vulnerability (CVE-2025-26399) affecting SolarWinds products, which could lead to unauthorized command execution. Read more.

• Asahi Data Breach: Japanese brewery Asahi Group confirmed a cyber-attack linked to the Qilin ransomware group, resulting in 27 GB of stolen data and operational disruptions. This incident underscores the risks faced by global organizations. Read more.

• Ransomware Trends: The broader threat landscape in October 2025 shows an alarming increase in ransomware attacks targeting critical infrastructure sectors, including education, emphasizing the need for enhanced security measures. Read more.