/i.s3.glbimg.com/v1/AUTH_63b422c2caee4269b8b34177e8876b93/internal_photos/bs/2018/e/e/PAMa3oQXOPBUOsGgFyFw/valor-tenant-icon.png){kind=icon}
/i.s3.glbimg.com/v1/AUTH_da025474c0c44edd99332dddb09cabe8/internal_photos/bs/2023/1/X/nkkB7tSdirnIUbGhakCQ/favicon-o-globo.png){kind=small}
Overview
- Executives and IT teams at major companies, including Google, have received emails alleging theft of sensitive Oracle E‑Business Suite data.
- The messages started on September 29 and were sent from hundreds of compromised third‑party email accounts, according to Google and Halcyon.
- Attackers supplied screenshots and directory trees as purported proof and claimed ties to Cl0p, with Google noting overlap with at least one known Cl0p affiliate address.
- Halcyon reports recent seven‑ and eight‑figure ransom demands, including one case reaching up to $50 million, while Oracle has not commented.
- Separately, the Financial Times reported that China is restricting the use of Nokia and Ericsson equipment in telecom networks.