Oracle EBS Hack - Corporate Giants Silent on Impact
Basically, hackers attacked Oracle software, and some big companies aren't saying if they're affected.
A recent hacking campaign against Oracle EBS has left four major companies silent. Broadcom, Bechtel, Estée Lauder, and Abbott Technologies have not confirmed their status. This silence raises concerns about potential data breaches and impacts on stakeholders. Companies typically acknowledge such incidents, making their lack of response alarming.
What Happened
Recently, a significant hacking campaign targeted Oracle E-Business Suite (EBS) customers, with the Cl0p ransomware group claiming responsibility. They exploited zero-day vulnerabilities to access sensitive data from various organizations using Oracle’s software. This data was then used for extortion, with Cl0p publishing a list of over 100 alleged victims on their leak site. Notably, four corporate giants—Broadcom, Bechtel, Estée Lauder, and Abbott Technologies—have remained silent about the potential impact of this breach.
The hackers have released torrent files containing data from some of these companies, suggesting they have refused to pay the ransom. While many affected organizations have issued statements confirming breaches, these four companies have not publicly acknowledged any incident, raising questions about their status and the extent of the breach.
Who's Affected
The companies listed as victims span a wide range of industries, including technology, telecommunications, finance, and manufacturing. The silence from Broadcom, Bechtel, Estée Lauder, and Abbott is particularly concerning given their size and influence. They were all mentioned on the Cl0p website around November 20, 2025, but have not responded to inquiries about their involvement or the investigation.
This lack of communication can lead to uncertainty among stakeholders, customers, and investors. Companies typically issue at least a statement confirming an investigation is underway, but these four have chosen to remain quiet, which could have implications for their reputation and trustworthiness.
What Data Was Exposed
While specific details about the leaked data remain unclear, preliminary analysis indicates that Broadcom had over 2TB of files exposed, while Estée Lauder was linked to 870GB of archives. The torrents related to Bechtel and Abbott are still available, but no data has been retrieved for analysis. The nature of the leaked files suggests they originate from Oracle EBS environments, which could include sensitive corporate information.
The implications of this breach are significant. If sensitive data, such as health information or financial records, was compromised, these companies could face legal repercussions and regulatory scrutiny. However, if the data does not meet materiality thresholds, they might not be legally obligated to disclose the breach.
What You Should Do
For individuals and businesses, the best course of action is to stay informed about the situation. If you are a customer or stakeholder of any of the affected companies, monitor their communications for updates. It’s essential to be aware of any potential risks associated with this breach.
Additionally, consider enhancing your own cybersecurity measures. Regularly update software, use strong passwords, and be cautious of phishing attempts, especially in light of this incident. Organizations should also review their incident response plans and ensure they are prepared for potential breaches, as the landscape of cyber threats continues to evolve.
SecurityWeek