- Pro
- Security
Has Cl0p struck again?
Comments (0) ()When you purchase through links on our site, we may earn an affiliate commission. Here’s how it works.
(Image credit: Shutterstock)
- Cox Enterprises breached via Oracle E-Business Suite zero‑day, exposing data of 9,479 individuals
- Cl0p ransomware group claimed responsibility, publishing stolen files on its leak site in late October
- Cox offers 24 months of free credit monitoring and identity theft protection to affected victims
Cox Enterprises, an American global conglomerate with major subsidiaries in telecommunications and automotive services, has confirmed being the latest in the long line of companies compromised through a zero-day in the Oracle E-Business Suite.
The company filed a new report with the Maine Attorney General’s Office, stating that it was breached in August, but only spotted the intrusion in late September, 2025, along with a data breach notification letter sent out to affected individuals - exactly 9,479 people.
- Amazon Black Friday deals are live: here are our picks!
“Unfortunately, this issue affected many companies that use Oracle’s systems, including Cox,” it said. “Once we learned of this activity, we promptly launched an investigation and applied Oracle’s security fix as soon as it became available. We also brought in cybersecurity experts and data analysts to review our systems and the data that we thought may have been copied and taken. We have also been in contact with law enforcement.”
You may like-
Google researchers say Oracle EBR hackers have hit dozens of organizations
-
The Washington Post confirms it suffered an Oracle-linked data breach
-
GlobalLogic says data on 10,000 workers exposed in Oracle-linked data breach
Files pop up on the dark web
The investigation, which concluded on October 31, 2025, determined the hackers stole personal information, including full names - however other details about the nature of the files were redacted from the data breach notification letter.
Cox did not name the perpetrators, but from previous reports we know that the ransomware group known as Cl0p was behind the Oracle attacks.
The conglomerate is not the first company to have been struck through Oracle, with Logitech, Washington Post, GlobalLogic, Envoy Air, and Harvard University being just some of the high-profile names being mentioned.
Cl0p added Cox Enterprise to its data leak website on October 27, and has already published the stolen information.
Are you a pro? Subscribe to our newsletterContact me with news and offers from other Future brandsReceive email from us on behalf of our trusted partners or sponsorsBy submitting your information you agree to the Terms & Conditions and Privacy Policy and are aged 16 or over.To mitigate the risk, Cox is offering up to 24 months of free credit monitoring and identity theft protection services through IDX for all affected individuals.
Via BleepingComputer
The best antivirus for all budgetsOur top picks, based on real-world testing and comparisons➡️ Read our full guide to the best antivirus1. Best overall:Bitdefender Total Security2. Best for families:Norton 360 with LifeLock3. Best for mobile:McAfee Mobile Security
Follow TechRadar on Google News and add us as a preferred source to get our expert news, reviews, and opinion in your feeds. Make sure to click the Follow button!
And of course you can also follow TechRadar on TikTok for news, reviews, unboxings in video form, and get regular updates from us on WhatsApp too.
Sead FadilpašićSocial Links NavigationSead is a seasoned freelance journalist based in Sarajevo, Bosnia and Herzegovina. He writes about IT (cloud, IoT, 5G, VPN) and cybersecurity (ransomware, data breaches, laws and regulations). In his career, spanning more than a decade, he’s written for numerous media outlets, including Al Jazeera Balkans. He’s also held several modules on content writing for Represent Communications.
You must confirm your public display name before commenting
Please logout and then login again, you will then be prompted to enter your display name.
Logout Read more
Google researchers say Oracle EBR hackers have hit dozens of organizations
The Washington Post confirms it suffered an Oracle-linked data breach
GlobalLogic says data on 10,000 workers exposed in Oracle-linked data breach
Ransomware hackers claim Oracle app breach, tell victims their data has been stolen
Logitech confirms data breach - but says it isn't sure exactly what information was lost
Over 120 million Reputation.com records might have leaked online - here's what we know
Latest in Security
Iberia tells customers it was hit by a major security breach
Google security experts say Gainsight hacks may have left hundreds of companies affected
Perplexity responds to Comet browser vulnerability claims, argues "fake news"
D-Link routers under threat from dangerous flaw - here's how to stay safe
Second-order prompt injection can turn AI into a malicious insider
Too good to be true? Be careful when looking through those Black Friday offers - they might be a scam
Latest in News
OnePlus just dropped its own Apple Watch SE rival with the affordable Watch Lite
How to watch Bigg Boss 19 online for *FREE*
Valve dashes dreams of $500 Steam Machine with new hint on pricing
OnePlus 15R launch date confirmed – and it's arriving alongside two other devices
Cox Enterprises hit by Oracle data breach - but it won't name who carried out the attack
DJI explains what its looming US ban means for your drones
LATEST ARTICLES- 1Cox Enterprises hit by Oracle data breach - but it won't name who carried out the attack
- 2165 million Americans suffered a data breach in 2025 – this $2 solution could stop you from being next
- 3NordLocker is one of the most trusted security platforms out there - and its cloud storage offering has some great Black Friday deals
- 4Google security experts say Gainsight hacks may have left hundreds of companies affected
- 5NYT Connections hints and answers for Tuesday, November 25 (game #898)
