When you purchase through links on our site, we may earn an affiliate commission. This doesn’t affect our editorial independence.
The Washington Post has recently confirmed it was among the victims of an Oracle hack that was linked to Oracle’s suite of corporate software applications. Reuters first reported the news on Friday. In the report, it relied on a statement from the newspaper that said it was affected “by the breach of the Oracle E-Business Suite platform.”
Forging ahead, Oracle spokesperson Michael Egbert referred reporters to two advisories the company had previously released. However, he did not address specific questions.
TechPolyp notes that that last month, Google reported that the ransomware gang Clop had been targeting several companies. This ugly event started after exploiting several vulnerabilities in Oracle’s E-Business Suite software, leading to the ‘Oracle Hack’. These suites were in no doubt what many organizations use for managing human resources. In addition, they also use the same for business operations, and other sensitive data.
According to Google’s findings, the Oracle hack allowed the attackers to steal customer business records and employee data from more than 100 companies.
Clop Ransomware Gang Targets Major Organizations Through Oracle Hack
It is worthy to note that the campaign reportedly began in late September, 2025. Furthermore, several corporate executives confirmed they received extortion messages during this period. Following thorough investigations, these messages had connection with email addresses linked to the Clop gang involved in the Oracle Hack. The messages claimed that the hackers had obtained large amounts of confidential business information and personal data from compromised Oracle systems.
Moving forward, cybersecurity firm Halcyon confirmed that the hackers demanded random fom one executive at an affected company. This was a sum of $50 million. In further reactions, Clop claimed on its website on Thursday that it had breached The Washington Post. The gang also accused the company of “ignoring their security.” Conversely, TechPolyp finds out that the group typically uses this language when victims refuse to pay, and such was likely the case with the Washington Post and the Oracle Hack.
It is not unusual for ransomware or extortion groups such as Clop to publish the names and stolen data of their victims as part of their pressure tactics. That seems to be a norm already. The resultant effect of that tactic is an indication that the target has either declined to negotiate. Alternatively, the company may have refused to be exploited, or that discussions have failed.
In the same vein, several other organizations have also confirmed being impacted by the Oracle hack. This includes Harvard University and Envoy, a subsidiary of American Airlines.
As a tradition, hackers are always on rampage, looking out to explore vulnerabilities to steal data. Some of them leverage AI in this exploitative task while other don’t. However, it’s essential for companies to strengthen their cybersecurity base as Google did earlier this year.
