Logitech confirms breach tied to Oracle EBS campaign.

Logitech disclosed a data breach involving data exfiltration through a zero-day in third-party software, shortly after being named in the Cl0p ransomware campaign targeting Oracle’s E-Business Suite. The company said limited employee, consumer, and supplier data was affected, but no sensitive personal or financial information was stored in the impacted system. Operations and manufacturing were not disrupted, and Logitech expects its cybersecurity insurance to cover related costs. Cl0p claims to have leaked 1.8 TB of stolen files, with over 50 organizations listed as victims in the campaign linked to threat actor FIN11.

Read more:

https://www.securityweek.com/logitech-confirms-data-breach-following-designation-as-oracle-hack-victim/