American Airlines Subsidiary Envoy Confirms Data Breach via Oracle EBS Vulnerabilities
Envoy Air, an American Airlines subsidiary, has confirmed a data breach involving Oracle E-Business Suite vulnerabilities exploited by the Clop extortion group. The company states no sensitive customer data was compromised, though limited business information may have been accessed. The incident highlights ongoing security challenges with enterprise software platforms.
Airline Subsidiary Confirms Oracle EBS Compromise
Envoy Air, a regional carrier operating as an American Airlines subsidiary, has confirmed it was among the organizations compromised through security vulnerabilities in Oracle’s E-Business Suite (EBS) platform. According to reports, the Clop ransomware group claimed responsibility for the breach and subsequently listed American Airlines on its data leak site.
