Oracle (NYSE:ORCL) slide more than 2% on Thursday as Google’s (NASDAQ:GOOG) (NASDAQ:GOOG) Mandiant cybersecurity unit said the cybersecurity incident into Oracle’s e-business unit is widespread.
“Our analysis indicates that the CL0P extortion campaign followed months of intrusion activity targeting EBS customer environments,” Mandiant said in a blog post. “The threat actor(s) exploited what may be CVE-2025-61882 as a zero-day vulnerability against Oracle EBS customers as early as Aug. 9, 2025, weeks before a patch was available, with additional suspicious activity dating back to July 10, 2025. In some cases, the threat actor successfully exfiltrated a significant amount of data from impacted organizations.”
Google acquired Mandiant in a $5.4B all-cash deal in 2022.
Oracle said earlier this month that it was investigating a number of extortion emails that were targeting customers of its e-business suite. The company first disclosed the attacks in July.
