Oracle-linked hacking campaign targets Envoy Air

ago 8 hours
Oracle-linked hacking campaign targets Envoy Air

Envoy Air, a significant regional carrier under American Airlines, has recently reported a hacking incident linked to a campaign exploiting Oracle E-Business Suite applications. The breach occurred amid a series of extortion attempts attributed to the cybercriminal group known as CL0P. Envoy Air, based in Irving, Texas, operates a fleet of over 160 aircraft, managing 875 flights daily.

Incident Confirmation and Response

A spokesperson from Envoy Air confirmed the incident in a statement on Friday. The company is currently conducting an investigation and has involved law enforcement in the process. They reassured that after a detailed review, no sensitive or customer data was compromised; however, some business information and commercial contact details may have been affected.

Background of the Hacking Campaign

This incident marks Envoy Air as the second known victim of the hacking campaign that targets Oracle E-Business Suite applications. The notorious CL0P group has a well-documented history of attacking third-party software and service providers.

Extent of the Threat

  • Targeted Organization: Envoy Air
  • Parent Company: American Airlines
  • Operation Type: Cyber extortion
  • Exploited Software: Oracle E-Business Suite applications
  • Hack Type: Data compromise and extortion
  • Other Victims: Harvard University and potentially more

Security Expert Insights

Cybersecurity experts from Google reported on October 9 that significant quantities of customer data were allegedly stolen, with the operation possibly beginning several months prior. The actual timing of the Envoy Air attack remains uncertain.

In light of the ongoing threats, Envoy Air remains vigilant and committed to ensuring the security of its operations and the trust of its customers.