Ethical Hacking News
Cox Enterprises has revealed that its Oracle E-Business Suite platform was compromised by hackers who exploited a zero-day flaw, exposing the personal data of 9,479 individuals. The breach, attributed to Cl0p ransomware, serves as another stark reminder of the ever-present risks and challenges faced by organizations in protecting their sensitive information.
Cox Enterprises suffered a data breach exposing personal data of 9,479 individuals due to a zero-day flaw in Oracle E-Business Suite. The breach occurred between August 9-14, 2025, and was attributed to the Cl0p ransomware group. Other notable breaches related to Oracle E-Business Suite have been confirmed by multiple companies, including Logitech, Washington Post, GlobalLogic, Envoy Air, and Harvard University. Cox Enterprises is notifying impacted individuals and offering identity theft protection and credit monitoring services through IDX at no cost for 12 months. The breach highlights the importance of cybersecurity awareness as companies continue to prioritize digital transformation.
Cox Enterprises, a major American conglomerate with interests in media, telecommunications, and automotive services, has disclosed a data breach that exposed personal data of 9,479 impacted individuals after hackers exploited a zero-day flaw in Oracle E-Business Suite. The company's internal investigation was triggered on September 29, 2025, when suspicious activity involving the platform was detected.
The breach occurred between August 9-14, 2025, and is attributed to cybercriminals who took advantage of CVE-2025-61882, a previously unknown security flaw in Oracle E-Business Suite. This vulnerability was long before Oracle released a patch on October 5, which only added fuel to the fire as Cl0p hackers claimed responsibility for the breach.
The Cl0p ransomware group is known for its exploits of zero-days in popular software products used by numerous organizations worldwide. Previous instances where Cl0p leveraged unknown vulnerabilities include the Cleo file transfer in 2024, MOVEit Transfer and GoAnywhere MFT in 2023, SolarWinds Serv-U FTP in 2021, and the Accellion FTA in 2020.
Other notable breaches related to Oracle E-Business Suite have been confirmed by multiple companies, including Logitech, Washington Post, GlobalLogic, Envoy Air, and Harvard University. Cox Enterprises is one of several entities affected by Cl0p's data theft after it published the stolen information on a dark web website.
The threat actor also claimed Cox Communications suffered a separate breach in June 2024, during which attackers exploited an exposed backend API to reset millions of customer modems and steal their personal data. Moreover, Cox Media Group was hit by ransomware that impacted live TV and radio broadcast streams earlier, in October 2021.
To mitigate the impact of this latest breach, Cox Enterprises is notifying impacted individuals and offering instructions on how to enroll in identity theft protection and credit monitoring services through IDX at no cost for 12 months. The company has not named the attackers but has assured affected parties of its commitment to taking all necessary steps to protect their sensitive information.
In light of these recent security incidents, cybersecurity awareness remains a pressing concern across various sectors. As companies continue to prioritize digital transformation and adapt to emerging technologies, it is equally crucial that they enhance their defenses against the constant threat of sophisticated cyberattacks.
Related Information:
https://www.ethicalhackingnews.com/articles/Cox-Enterprises-Exposes-Personal-Data-to-Hackers-via-Oracle-E-Business-Suite-Zero-Day-Flaw-ehn.shtml
https://www.bleepingcomputer.com/news/security/cox-enterprises-discloses-oracle-e-business-suite-data-breach/
https://www.emeryreddy.com/blog/data-breach/cox-enterprises-inc-data-breach
https://nvd.nist.gov/vuln/detail/CVE-2025-61882
https://www.cvedetails.com/cve/CVE-2025-61882/
Published: Sat Nov 22 13:01:19 2025 by llama3.2 3B Q4_K_M
