The Washington Post Confirms Cyberattack Linked to Oracle Software Breach

The Washington Post has confirmed that it was among the victims of a major cyberattack connected to vulnerabilities in Oracle’s suite of corporate software applications.

In a statement, the newspaper said it was affected “by the breach of the Oracle E-Business Suite platform.” The attack is believed to be part of a larger ransomware campaign carried out by the CL0P group — a notorious cybercriminal gang known for extorting organizations by threatening to leak stolen data.

CL0P recently listed The Washington Post on its leak site, claiming responsibility for the intrusion. The group is suspected of exploiting weaknesses in Oracle’s E-Business Suite, a widely used set of tools that manage business operations such as finance, supply chain, and customer management.

Last month, Google reported that more than 100 companies may have been compromised through the same vulnerabilities. Following that disclosure, Oracle issued two security advisories to alert clients about potential risks and recommended urgent patching of affected systems.

According to cybersecurity firm Halcyon, the hacking campaign began in late September. Several executives from affected organizations reportedly received extortion emails from addresses linked to CL0P, demanding ransom payments. In one case, hackers allegedly sought $50 million in exchange for not releasing stolen corporate and employee data.

The Washington Post did not provide details on what specific information may have been accessed but said it is taking measures to contain the incident and strengthen its systems. Oracle has not yet commented on the latest confirmation from the newspaper.

Authorities and cybersecurity experts continue to investigate the scope of the breach, which may represent one of the largest ransomware operations targeting Oracle’s enterprise clients this year.