The Register: Oracle tells Clop-targeted EBS users to apply July patch, problem solved

Oct 3, 2025

—

Source URL: https://www.theregister.com/2025/10/03/oracle_ebs_clop_extortion/
Source: The Register
Title: Oracle tells Clop-targeted EBS users to apply July patch, problem solved

Feedly Summary: Researchers suggest internet-facing portals are exposing ‘thousands’ of orgs
Oracle has finally broken its silence on those Clop-linked extortion emails, but only to tell customers what they already should have known: patch your damn systems.…

AI Summary and Description: Yes

Summary: The text highlights the security risks associated with internet-facing portals that could potentially expose organizations to threats. Additionally, it mentions Oracle’s response to Clop-linked extortion emails, emphasizing the importance of patch management in mitigating vulnerabilities.

Detailed Description:
The text discusses critical security issues that affect many organizations, particularly those exposing themselves through internet-facing applications and systems. Oracle’s recent acknowledgment concerning the Clop group indicates significant extortion activity and reinforces the necessity for proactive system maintenance and patching.

– **Internet-facing Portals**: The text suggests that many organizations are operating internet-facing portals that may not be properly secured, leaving them vulnerable to cyber threats, often referred to as ‘thousands’ of organizations being at risk.
– **Oracle and Clop Extortion Emails**: Oracle’s recent actions indicate they are aware of extortion threats perpetrated by the Clop group. The mention of “patch your damn systems” underscores a critical message in cybersecurity: timely patching is essential to protect systems from exploitation by malicious actors.
– **Security Implications**: The text implicitly stresses the essential nature of security hygiene in environment management, which includes but is not limited to constant monitoring, timely patching, and threat intelligence sharing as best practices for organizations.

Overall, this information is vital for security professionals in AI, cloud computing, and infrastructure security to understand vulnerabilities that can be exploited and seek to enhance their existing protective measures.

1 10 2 2025 3 5 a Act actions age AI All and app Application applications Arch art as at ated aware being Best best practices Bi by C CERN CI CIA Clop Cloud cloud computing co Computing constant core critical custom Customer cyber cyber threat cyber threats cybersecurit Cybersecurity D de e email environment ERP exp exploit Exploitation extortion facing portals for g Gen GIS Group gs H high Highlight HR http HTTPS implications implicit in Inforce information infrastructure infrastructure security Intel intelligence intelligence sharing inter intern internet io Iron issue ite J k l led Li Link linked M maintenance Malicious Actor malicious actors man management measures Monitor monitoring N no o of on only ons Oracle organization organizations oS over Patch Patch Management patching per potential practices pro proactive problem professionals protective measures ps R rate RCE re ready red research researchers response Risk risks Ro RoT s search sec secure security security hygiene security implications security issues security professionals security risk security risks SHA sharing Sig SoC source SSE SSO system systems T target targeted ted text the threat threat intel threat intelligence threat intelligence sharing threats Time to Tor TP UN under up US use user Users V vulnerabilities Ware Wi x z