Global — A large-scale cybersecurity breach targeting users of Oracle E-Business Suite (EBS) continues to raise concerns, as several multinational corporations remain silent about their potential exposure months after the attack surfaced.
The ransomware group Cl0p has claimed responsibility for the campaign, which allegedly exploited zero-day vulnerabilities in Oracle’s enterprise platform to gain unauthorized access to sensitive corporate data. The stolen information has reportedly been used as leverage in extortion attempts.
Four Industry Giants Yet to Respond
While many affected organizations have acknowledged the breach and initiated public disclosures, four major companies have not issued any official statements regarding their involvement or the potential impact. These include Broadcom, Bechtel, Estée Lauder Companies, and Abbott Laboratories.
All four firms were listed as alleged victims on Cl0p’s leak site in November 2025. Despite repeated inquiries, none have confirmed whether they were affected or are conducting investigations.
масштаб of the Breach
Cybersecurity analysts believe the attack may involve multiple threat actors, with links to groups such as FIN11. The campaign has reportedly impacted over 100 organizations across industries including technology, manufacturing, finance, and healthcare.
Hackers have published torrent files tied to the stolen data, suggesting that some victims refused to pay ransom demands. Preliminary analysis indicates that at least some of the leaked files originated from Oracle EBS environments.
In one instance, more than 2 terabytes of data were allegedly linked to Broadcom, while another dataset tied to Estée Lauder reportedly reached hundreds of gigabytes.
Why Some Companies Stay Silent
Experts note that companies often take months to fully assess the scope of a cyberattack. However, large corporations typically acknowledge ongoing investigations early in the process.
There are several possible reasons for the silence. If the breach did not involve regulated data—such as financial records or personal health information—companies may not be legally required to disclose it. Additionally, firms may avoid public statements to limit legal risks, investor concerns, or reputational damage.
Cybercriminal groups are also known to exaggerate claims, which may lead companies to delay responses until findings are verified.
Ongoing Risks and Industry Impact
Even when data is not publicly accessible, cybersecurity specialists warn that stolen information can circulate privately on underground networks, posing long-term risks.
The Oracle EBS incident highlights the growing threat posed by sophisticated ransomware operations targeting enterprise software systems. As investigations continue, pressure is mounting on organizations to improve transparency and strengthen defenses against similar attacks.
