Google has issued a warning regarding a wave of extortion emails being sent to various corporate executives, claiming that sensitive data has been stolen from their Oracle business applications. This alarming trend involves a group purporting to be associated with the ransomware gang known as cl0p.
In an official statement, Google noted that numerous executives have been targeted with these high-volume emails, although the company admitted it currently lacks sufficient evidence to confirm the authenticity of these claims. Cynthia Kaiser, head of the Ransomware Research Center at Halcyon, reported that extortion demands have been substantial, sometimes reaching figures between seven and eight digits, with the highest demand recorded at $50 million.
While there is some debate regarding the connection to cl0p, early indications suggest that the attackers may indeed be linked to this notorious group. Kaiser mentioned the extensive overlap among different hacking groups and the prevalence of copycat behaviour within the cybercriminal ecosystem. As more information emerges, a clearer understanding of the situation is expected.
Both cl0p and Oracle did not respond to requests for comments on the matter. Google has chosen not to disclose additional details about the email campaign, leaving many questions unanswered as cybersecurity concerns continue to escalate.