Washington Post confirms data breach linked to Oracle hacks

The Washington Post has said that it was 1 of the victims of a hacking run tied to Oracle’s suite of firm bundle apps.  

Reuters archetypal reported the quality connected Friday, citing a connection from the paper that said it was affected “by the breach of the Oracle E-Business Suite platform.” 

A spokesperson for the Post did not instantly respond to TechCrunch’s petition for comment 

When reached by email, Oracle spokesperson Michael Egbert referred TechCrunch to its two advisories that it antecedently posted, and did not reply our questions. 

Last month, Google said that the ransomware pack Clop was targeting companies aft exploiting aggregate vulnerabilities successful Oracle’s E-Business Suite software, which companies usage for their concern operations, storing their quality resources files, and different delicate data.

The exploits allowed the hackers to bargain their customer’s concern information and worker records from much than 100 companies, per Google.

The hackers’ run began successful precocious September erstwhile firm executives reported receiving extortion messages sent from email addresses antecedently associated with the Clop gang, claiming that the hackers had stolen ample amounts of delicate interior concern information and employees’ idiosyncratic accusation from hacked Oracle systems. 

Anti-ransomware steadfast Halcyon told TechCrunch astatine the clip that the hackers demanded 1 enforcement astatine an affected institution to wage $50 cardinal successful a ransom payment. 

On Thursday, Clop claimed connected its website that it had hacked The Washington Post, claiming that the institution “ignored their security,” connection that the Clop pack typically uses erstwhile the unfortunate does not wage the hackers. 

It’s not uncommon for ransomware oregon extortion gangs similar Clop to publicize the names and stolen files of their victims arsenic a unit tactic, which tin suggest that the unfortunate has not negotiated a outgo with the gang, oregon the dialog broke down. 

Several different organizations person confirmed they are affected by the Oracle E-Business hacks, including Harvard University and American Airlines subsidiary Envoy.