Harvard College is investigating a data breach after the Clop ransomware gang listed the college on its information leak web site, saying the alleged breach was seemingly attributable to a just lately disclosed zero-day vulnerability in Oracle’s E-Enterprise Suite servers.
“Harvard is conscious of stories that information related to the College has been obtained on account of a zero-day vulnerability within the Oracle E-Enterprise Suite system. This concern has impacted many Oracle E-Enterprise Suite clients and isn’t particular to Harvard,” a Harvard College Data Know-how spokesperson informed BleepingComputer.
“Whereas the investigation is ongoing, we imagine that this incident impacts a restricted variety of events related to a small administrative unit.”
“Upon receiving it from Oracle, we utilized a patch to remediate the vulnerability. We’re persevering with to watch and haven’t any proof of compromise to different College methods.”
This assertion comes after the Clop extortion gang added Harvard to its information leak extortion web site, stating that it could quickly publicly launch the College’s information.
BleepingComputer
Earlier this month, Mandiant and Google started monitoring a brand new extortion marketing campaign the place quite a few corporations started receiving emails stating delicate information was stolen from their Oracle E-Enterprise Suite methods.
These emails got here from the Clop ransomware operation, which warned that the stolen information can be leaked if a ransom demand was not paid.
Whereas Clop wouldn’t share particulars concerning the assault, they confirmed to BleepingComputer that they had been behind the emails and {that a} new Oracle flaw was exploited within the information theft assaults.
“Quickly all will turn out to be apparent that Oracle bugged up their core product and as soon as once more, the process is on clop to avoid wasting the day,” the extortion gang informed BleepingComputer.
Quickly after, Oracle confirmed a brand new zero-day, tracked as CVE-2025-61882, was discovered within the software program and issued an emergency replace.
The Clop extortion gang has an extended historical past of exploiting zero-day flaws in large information theft assaults, together with:
Harvard is the primary group linked to the Oracle E-Enterprise Suite zero-day assaults, however we are going to seemingly see extra listed over the approaching days and weeks.
Be part of the Breach and Attack Simulation Summit and expertise the way forward for security validation. Hear from prime specialists and see how AI-powered BAS is reworking breach and assault simulation.
Do not miss the occasion that can form the way forward for your security technique
