Hackers Are Sending Extortion Emails To Executives After Claiming Oracle Apps’ Data Breach

Google says hackers associated pinch a prolific ransomware group are sending extortion emails to executives astatine “numerous” ample organizations aft claiming to person stolen their delicate accusation from a suite of business package products developed by Oracle.

In a connection provided to TechCrunch, Google’s caput of cybercrime study Genevieve Stark said nan hackers began sending emails to executives astir September 29, but that nan tech elephantine has not yet substantiated nan hackers’ claims.

The emails were sent from hundreds of compromised accounts, including 1 utilized by a known financially motivated cybercrime group affiliated pinch nan Clop ransomware gang. 

Charles Carmakal, nan main exertion serviceman of Google’s incident consequence portion Mandiant, told TechCrunch that nan malicious emails sent to executives contained interaction addresses that are listed connected Clop’s information leak site, which nan hackers usage to unit victims into paying them to region their stolen files.

Clop is simply a prolific hacking group that has hacked hundreds of companies successful recent years, often by exploiting antecedently undiscovered information flaws that are chartless to nan package maker, known arsenic zero-day vulnerabilities. These flaws person allowed nan hacking group to breach aggregate organizations astatine once, allowing nan theft of information connected at slightest tens of millions of people.

Bloomberg reported that successful 1 lawsuit nan hackers demanded $50 cardinal from an affected company, citing nan counter-ransomware patient Halcyon, which is responding to nan hacking run but did not return a petition for remark from TechCrunch.

According to Bloomberg, nan hackers utilized compromised personification emails and abused nan default password-reset usability to summation moving credentials for Oracle E-Business Suite web-portals that are accessible from nan internet.

Oracle E-Business Suite is simply a group of products developed by tech elephantine Oracle to thief companies negociate their customer databases, worker information, and quality resources files. Oracle says on its website that thousands of organizations astir nan world trust connected its E-Business Suite to tally their companies. 

Oracle spokesperson Deborah Hellinger did not return a petition for remark connected Thursday.

Do you cognize much astir nan extortion campaign? Are you an executive who received an extortion threat? We would emotion to perceive from you and tin support you anonymous. Securely interaction this newsman via encrypted connection astatine zackwhittaker.1337 connected Signal.