Bleeping Computer reports:
Harvard University is investigating a data breach after the Clop ransomware gang listed the school on its data leak site, saying the alleged breach was likely caused by a recently disclosed zero-day vulnerability in Oracle’s E-Business Suite servers.
“Harvard is aware of reports that data associated with the University has been obtained as a result of a zero-day vulnerability in the Oracle E-Business Suite system. This issue has impacted many Oracle E-Business Suite customers and is not specific to Harvard,” a Harvard University Information Technology spokesperson told BleepingComputer.
“While the investigation is ongoing, we believe that this incident impacts a limited number of parties associated with a small administrative unit.”
Read more at Bleeping Computer. Expect a lot of reports about entities being hit by Clop’s reported exploitation of an Oracle E-Business Suite zero-day vulnerability.
