BusinessLineยท2025-10-02 04:13Core Insights - A notorious ransomware group, allegedly linked to Cl0p, is extorting large organizations by claiming to have stolen data through Oracle's E-Business Suite applications [1][2] Group Activities - The extortion emails began circulating on or before September 29, sent from numerous compromised third-party accounts, asserting data theft [2] - The emails exhibit poor English and grammar, typical of the group, and include contact details associated with Cl0p [3] Company Impact - Google has not yet verified the claims made in the extortion demands, and the specific targets of the extortion letters remain undisclosed [4] - Cl0p has a history of targeting large companies with sophisticated malware, previously exploiting vulnerabilities in MOVEit, affecting hundreds of organizations [5] Cybersecurity Landscape - In June 2023, the US Cybersecurity and Infrastructure Security Agency issued a warning about Cl0p, identifying it as a major distributor of phishing and malspam, with over 3,000 organizations compromised in the US and 8,000 globally [6]