{"id":349195,"date":"2025-10-03T01:40:00","date_gmt":"2025-10-03T08:40:00","guid":{"rendered":"https:\/\/cms-articles.softonic.io\/es\/?p=397736"},"modified":"2025-10-03T02:40:05","modified_gmt":"2025-10-03T09:40:05","slug":"oracle-may-have-a-serious-security-issue-on-its-hands-that-has-not-been-confirmed","status":"publish","type":"post","link":"https:\/\/cms-articles.softonic.io\/en\/oracle-may-have-a-serious-security-issue-on-its-hands-that-has-not-been-confirmed\/","title":{"rendered":"Oracle may have a serious security issue on its hands that has not been confirmed"},"content":{"rendered":"\n<p>Groups of attackers associated with the Clop ransomware have begun sending emails to Oracle customers, demanding extortion payments and claiming to have stolen data from their E-Business Suite. <strong>Although investigators have not confirmed the veracity of these claims, multiple investigations are underway into the Oracle environments belonging to the organizations that received such communications<\/strong>.<\/p>\n\n\n<h2 class=\"wp-block-heading\">Extortion or real data theft?<\/h2>\n\n\n<p>According to Charles Carmakal, CTO of Mandiant Consulting, a high-volume email campaign has been observed launched from hundreds of compromised accounts.<strong> The emails contain contact information and, interestingly, it has been verified that some of the provided addresses are publicly listed on the Clop data leak site<\/strong>. Despite this, Clop has not yet made its claims public on its leak platforms.<\/p>\n\n\n<figure class=\"wp-block-embed is-type-video is-provider-youtube wp-block-embed-youtube wp-embed-aspect-16-9 wp-has-aspect-ratio\"><div class=\"wp-block-embed__wrapper\">\n<iframe loading=\"lazy\" title=\"Oracle Ad\" width=\"840\" height=\"473\" src=\"https:\/\/www.youtube.com\/embed\/q8rZwLC8iPo?feature=oembed\" frameborder=\"0\" allow=\"accelerometer; autoplay; clipboard-write; encrypted-media; gyroscope; picture-in-picture; web-share\" referrerpolicy=\"strict-origin-when-cross-origin\" allowfullscreen><\/iframe>\n<\/div><\/figure>\n\n\n<p>The extortion campaign has involved sending emails directed at company executives from compromised third-party accounts, starting on or before September 29. <strong>Genevieve Stark, head of cybercrime intelligence analysis at Google Threat Intelligence Group, commented that, although the indications point to Clop, it is unclear whether the group&#8217;s claims are credible or how they gained access to Oracle&#8217;s information<\/strong>.<\/p>\n\n\n<p>Although efforts are being made to determine the authenticity of these threats, there is currently no evidence of a successful data breach or specific malware related to this campaign.<strong> Extortion communications pressure victims to initiate negotiations, but do not include concrete demands<\/strong>. Researchers are continuously working to clarify the details of how this possible access to Oracle&#8217;s E-Business Suite occurred and the impact it could have on its customers.<\/p>\n\n<div class=\"sc-card-program\">\r\n  <div class=\"sc-card-program__body\">\r\n    <div class=\"sc-card-program__row clearfix\">\r\n      <div class=\"sc-card-program__col-logo\">\r\n        <img decoding=\"async\" class=\"sc-card-program__img\" alt=\"Avast Free Antivirus\" src=\"https:\/\/images.sftcdn.net\/images\/t_app-icon-s\/p\/2d9f9134-96d0-11e6-bf8f-00163ec9f5fa\/1408299994\/avast-Avast_Symbol_V2_Positive_Orange_256x256.png\" width=\"100px\" height=\"100px\">\r\n      <\/div>\r\n      <div class=\"sc-card-program__col-title\">\r\n        <span class=\"sc-card-program__title\">Avast Free Antivirus<\/span>\r\n        <a class=\"sc-card-program__button sc-card-program-internal\" href=\"https:\/\/avast.softonic.com\/\" target=\"_self\" rel=\"noopener noreferrer\">DOWNLOAD<\/a>\r\n      <\/div>\r\n      <div class=\"sc-card-program__col-rating\">\r\n        <svg class=\"rating-score__content\" xmlns=\"http:\/\/www.w3.org\/2000\/svg\" version=\"1.1\" x=\"0\" y=\"0\" viewbox=\"0 0 50 50\" enable-background=\"new 0 0 50 50\" xml:space=\"preserve\"><path class=\"rating-score__background rating-score--good\" fill=\"none\" stroke-width=\"6\" stroke-miterlimit=\"10\" d=\"M40 40c8.3-8.3 8.3-21.7 0-30s-21.7-8.3-30 0 -8.3 21.7 0 30\"><\/path><path class=\"rating-score__value rating-score__value--0\" fill=\"none\" stroke-width=\"6\" stroke-dashoffset=\"0\" stroke-miterlimit=\"10\" d=\"M40 40c8.3-8.3 8.3-21.7 0-30s-21.7-8.3-30 0 -8.3 21.7 0 30\"><\/path><text class=\"rating-score__number\" content=\"\" text-anchor=\"middle\" transform=\"matrix(1 0 0 1 25 31.0837)\" data-auto=\"app-user-score\"><\/text><\/svg>\r\n      <\/div>\r\n    <\/div>\r\n    <div class=\"sc-card-program__row\">\r\n      <span class=\"sc-card-program__description\"><\/span>\r\n    <\/div>\r\n    <div class=\"sc-card-program__row\">\r\n      <img decoding=\"async\" class=\"sc-card-program__bigpic\" src=\"\" onerror=\"this.style.display='none'\">\r\n    <\/div>\r\n    <a class=\"sc-card-program__link track-link sc-card-program-internal\" href=\"https:\/\/avast.softonic.com\/\" target=\"_self\" rel=\"noopener noreferrer\"><\/a>\r\n  <\/div>\r\n<\/div>\n","protected":false},"excerpt":{"rendered":"<p>Groups of attackers associated with the Clop ransomware have begun sending emails to Oracle customers, demanding extortion payments and claiming to have stolen data from their E-Business Suite. Although investigators have not confirmed the veracity of these claims, multiple investigations are underway into the Oracle environments belonging to the organizations that received these communications. Extortion or real data theft? According to Charles Carmakal, CTO of Mandiant Consulting, a high-volume email campaign has been observed launched from hundreds of compromised accounts. The emails contain contact information and, interestingly, [&hellip;]<\/p>\n","protected":false},"author":9318,"featured_media":349196,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":"","wpcf-pageviews":0},"categories":[1015,11143],"tags":[16811,5605,16812,16813,16814,16815,16816,16817,2299],"usertag":[],"vertical":[],"content-category":[7176],"class_list":["post-349195","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-news","category-softwaresecurity","tag-atacantes","tag-ciberseguridad","tag-clop","tag-cto","tag-e-business-suite","tag-extorsion","tag-mandiant-consulting","tag-oracle","tag-ransomware","content-category-seguridad-privacidad"],"aioseo_notices":[],"_links":{"self":[{"href":"https:\/\/cms-articles.softonic.io\/en\/wp-json\/wp\/v2\/posts\/349195","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/cms-articles.softonic.io\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/cms-articles.softonic.io\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/cms-articles.softonic.io\/en\/wp-json\/wp\/v2\/users\/9318"}],"replies":[{"embeddable":true,"href":"https:\/\/cms-articles.softonic.io\/en\/wp-json\/wp\/v2\/comments?post=349195"}],"version-history":[{"count":2,"href":"https:\/\/cms-articles.softonic.io\/en\/wp-json\/wp\/v2\/posts\/349195\/revisions"}],"predecessor-version":[{"id":349206,"href":"https:\/\/cms-articles.softonic.io\/en\/wp-json\/wp\/v2\/posts\/349195\/revisions\/349206"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/cms-articles.softonic.io\/en\/wp-json\/wp\/v2\/media\/349196"}],"wp:attachment":[{"href":"https:\/\/cms-articles.softonic.io\/en\/wp-json\/wp\/v2\/media?parent=349195"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/cms-articles.softonic.io\/en\/wp-json\/wp\/v2\/categories?post=349195"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/cms-articles.softonic.io\/en\/wp-json\/wp\/v2\/tags?post=349195"},{"taxonomy":"usertag","embeddable":true,"href":"https:\/\/cms-articles.softonic.io\/en\/wp-json\/wp\/v2\/usertag?post=349195"},{"taxonomy":"vertical","embeddable":true,"href":"https:\/\/cms-articles.softonic.io\/en\/wp-json\/wp\/v2\/vertical?post=349195"},{"taxonomy":"content-category","embeddable":true,"href":"https:\/\/cms-articles.softonic.io\/en\/wp-json\/wp\/v2\/content-category?post=349195"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}