- Cox Enterprises breached Oracle E-Business Suite zero-day and exposed data from 9,479 people
- The Cl0p ransomware group claimed responsibility and published the stolen files on its leak page in late October
- Cox offers 24 months of free credit monitoring and identity theft protection to affected victims
Cox Enterprises, a US global conglomerate with major telecommunications and automotive services subsidiaries, has confirmed it is the latest in a long line of companies to have been compromised through a zero-day in the Oracle E-Business Suite.
The company filed a new report with the Maine Attorney General’s Office, stating that it was breached in August but only discovered the intrusion in late September 2025, along with a data breach notification letter sent out to affected individuals — 9,479 people to be exact.
“Unfortunately, this issue affected many companies using Oracle’s systems, including Cox,” it said. “When we learned of this activity, we immediately launched an investigation and applied Oracle’s security patch as soon as it became available. We have also brought in cybersecurity experts and data analysts to review our systems and the data we believed may have been copied and taken. We have also been in contact with law enforcement.”
Files appear on the dark web
The investigation, which concluded on October 31, 2025, determined that the hackers stole personal information, including full names — but other details about the nature of the files were redacted from the breach notification letter.
Cox did not name the perpetrators, but from previous reports we know that the ransomware group known as Cl0p was behind the Oracle attacks.
The conglomerate is not the first company to be targeted by Oracle, with Logitech, the Washington Post, GlobalLogic, Envoy Air and Harvard University being just some of the high-profile names mentioned.
Cl0p added Cox Enterprise to his data breach webpage on October 27 and has already published the stolen information.
To mitigate risk, Cox offers up to 24 months of free credit monitoring and identity theft protection through IDX to all affected individuals.
Via Bleeping Computer
The best antivirus for all budgets
Follow TechRadar on Google News and add us as a preferred source to get our expert news, reviews and opinions in your feeds. Be sure to click the Follow button!
And of course you can too follow TechRadar on TikTok for news, reviews, video unboxings, and get regular updates from us on WhatsApp also.
