Oracle Rushes Out Second Patch After Hackers Exploit Zero-Day in E-Business Suite
Oracle has released an emergency patch to fix a newly discovered zero-day vulnerability in its E-Business Suite software, following a surge in cyberattacks that reportedly leveraged the flaw to steal sensitive corporate data.
The vulnerability, tracked as CVE-2025-61884, allows remote attackers to exploit systems without authentication. Oracle confirmed the flaw affects E-Business Suite versions 12.2.3 through 12.2.14 and could give hackers access to critical business resources over the network without needing a username or password.
Security researchers say the notorious ShinyHunters group, known for data breaches at Qantas and Fujifilm, has already used the exploit to target multiple organizations. The group allegedly exfiltrated financial and personal information through Oracle systems that had not yet been patched.
This marks the second E-Business Suite patch Oracle has released in recent weeks to counter vulnerabilities linked to ransomware and extortion campaigns. Earlier in October, the company issued a fix for CVE-2025-61882, another unauthenticated flaw that allowed attackers to compromise the Oracle Concurrent Processing component and take full control of affected systems.
Cybersecurity analysts confirmed that this latest update effectively breaks the exploit chain used in recent attacks. Still, Oracle is urging all customers to apply both patches immediately and ensure their systems remain on fully supported versions to prevent future exploitation.
The attacks appear to follow a rising trend of cybercriminal groups targeting enterprise resource planning (ERP) platforms used by large corporations. With E-Business Suite powering financial and operational systems worldwide, experts warn that unpatched servers remain a lucrative entry point for data theft and extortion schemes.
While Oracle has not publicly linked the latest breach to any specific ransomware group, the company acknowledged the severity of the issue and reinforced its recommendation for rapid patch deployment. Whether the new fix will finally halt the wave of exploits remains to be seen, but for now, enterprises running Oracle’s business software are on high alert.
Photo Credit: DepositPhotos.com