Hacker Group Targets Oracle Customers
The Envoy Air breach forms part of a wider plot conducted by ransomware group, CIop. The perpetrators have been targeting Oracle EBS users through a zero-day vulnerability, which has so far affected American Airlines, Harvard University, the University of Witwatersrand in South Africa, and industrial giant, Emerson.
The South African university confirmed via a statement that it was working to determine which data had been compromised. While the hacker group has confirmed that it stole data from Emerson, no such information has been made public yet.
In recent years, the group has gained notoriety for launching similar attacks on file transfer services including Cleo, MOVEit, and Fortra. Reportedly, CIop victims receive extortion emails not long after the initial breach is identified.
