Clop hackers caught exploiting Oracle zeroday bug to steal executives personal data | TechCrunch

News Source : TechCrunch
News Summary
- Oracle released a new patch to fix a vulnerability in its E-Business suite.
- The bug can be “exploited over a network without the need for a username and password” Google security researchers said they found the prolific hacking group called Clop was sending emails to Oracle executives around September 29 demanding money to not publish their personal information online.
- “Clop has been sending extortion emails to several victims since last Monday,” said Charles Carmakal, the chief technology officer of Google’s incident response unit Mandiant.
Oracle has fixed a zeroday vulnerability in one of its flagship business software products that a hacking group is currently abusing to steal personal information about corporate executives.In a [+2349 chars]