New Clop-Linked Cyber Extortion Campaign Targets U.S. Agencies and Fortune 500 Companies
A new cyber extortion campaign, believed to be linked to the notorious Clop gang, has begun. Starting on September 29, the campaign is still in its early stages and has targeted several prominent organisations, including U.S. federal departments and Fortune 500 companies. The campaign centres around data allegedly stolen through the Oracle E-Business Suite. This is not the first time Oracle systems have been targeted; earlier this year, a January incident saw hackers steal information and access client credentials held on legacy Oracle systems. The extortion notes sent to executives at numerous organisations share contact addresses with those listed on the official Clop data leak site. This, along with the tracking of the activity by cybersecurity firms Mandiant and GTIG, suggests a strong link to the Clop ransomware gang. Clop has previously exploited vulnerabilities in popular file transfer tools, earning hundreds of millions of dollars in ransoms, with the MOVEit campaign alone netting them an estimated $75 million to $100 million. The current campaign is still in its early stages, with the exact trigger time not specified. Organisations are urged to remain vigilant and ensure robust cybersecurity measures are in place to protect against such threats. The use of outdated systems and unpatched vulnerabilities can leave organisations vulnerable to extortion and data theft.
Read also:
- Ford Discontinues Popular Top-Seller in Staggering Shift, Labeled as a "Model T Event"
- 2025 Witnesses a 27% Surge in Worldwide Electric Vehicle Sales, Despite Opposition to Electrification Policies in the U.S.
- Summarized Report: Insights from the Realm of Transportation
- Recorded surge in electric vehicle registrations during the initial half of the year
