Clop Ransomware Strikes Again: Oracle EBS Zero-Day Breach Hits Barts Health NHS
Clop ransomware strikes Barts Health NHS by exploiting a zero-day vulnerability in Oracle E-Business Suite, CVE-2025-61882. The breach exposed sensitive data, including patient invoices and supplier details. Barts Health reassures that core systems remain secure, while urging vigilance against potential fraud stemming from the attack.
Hot Take:
Well, it seems Clop ransomware decided to take a little ‘health check’ into the Barts Health NHS system, and they weren’t there for the flu shots or free band-aids! While Barts Health NHS Trust was busy catering to over 2.5 million people, the Clop gang was making a house call to their Oracle E-Business Suite, leaving behind a trail of chaos. Note to self: when your software starts coughing up zeros, it might be time for a patchwork remedy!
Key Points:
- Clop ransomware exploited a zero-day vulnerability in Oracle E-Business Suite to breach Barts Health NHS.
- The data breach exposed sensitive patient and financial information, affecting multiple organizations globally.
- Key systems like electronic patient records remained untouched, but financial data was compromised.
- The breach was detected in November, several months after the initial theft in August.
- Barts Health NHS has involved UK authorities and advised patients to be cautious of fraudulent activities.