{"id":636,"date":"2025-10-06T12:18:16","date_gmt":"2025-10-06T06:48:16","guid":{"rendered":"https:\/\/www.securis360.com\/blog\/?p=636"},"modified":"2026-02-18T07:30:26","modified_gmt":"2026-02-18T07:30:26","slug":"google-reports-extortion-email-campaign-targeting-corporate-executives","status":"publish","type":"post","link":"https:\/\/securis360.com\/blog\/google-reports-extortion-email-campaign-targeting-corporate-executives\/","title":{"rendered":"Google Reports Extortion Email Campaign Targeting Corporate Executives"},"content":{"rendered":"\n<p><strong>Google<\/strong> has warned that hackers are conducting an <strong>extortion email campaign<\/strong> targeting executives from various companies. These emails claim that the attackers have <strong>stolen sensitive data<\/strong> from the victims\u2019 <strong>Oracle business applications<\/strong>.<\/p>\n\n\n\n<p>According to Google, a group claiming affiliation with the <strong>cl0p ransomware gang<\/strong> has taken responsibility for the alleged data theft involving the <strong>Oracle E-Business Suite<\/strong>. The company described the operation as a <strong>high-volume email campaign<\/strong>, but declined to disclose specific details about the number of victims or the scope of the incident.<\/p>\n\n\n\n<p>Google emphasized that it <strong>does not yet have enough evidence<\/strong> to confirm the authenticity of the hackers\u2019 claims.<\/p>\n\n\n\n<p>Attempts to obtain a comment from <strong>Oracle<\/strong> have gone unanswered.<\/p>\n\n\n\n<p><strong>Cynthia Kaiser<\/strong>, who heads the <strong>Ransomware Research Center at Halcyon<\/strong>, reported that her firm has observed <strong>ransom demands<\/strong> ranging from <strong>millions to tens of millions of dollars<\/strong>, with the largest reaching up to <strong>$50 million<\/strong>. While there is some uncertainty regarding a direct link to cl0p, Kaiser noted early indications that the attackers may be <strong>associated with the group<\/strong>.<\/p>\n\n\n\n<p>\u201cThere\u2019s so much overlap among these cybercriminal organizations, and copycat operations are common across the ecosystem,\u201d Kaiser explained.<\/p>\n\n\n\n<p>In an email statement to <strong>Reuters<\/strong>, the <strong>cl0p group<\/strong> responded that they were <strong>\u201cnot prepared to discuss details at this time.\u201d<\/strong><\/p>\n\n\n\n<p>This incident underscores the growing <strong>cyber extortion threat<\/strong> facing corporate leaders and highlights the importance of strengthening <strong>email security and ransomware defenses<\/strong> across organizations.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Google has warned that hackers are conducting an extortion email campaign targeting executives from various companies. These emails claim that the attackers have stolen sensitive data from the victims\u2019 Oracle business applications. According to Google, a group claiming affiliation with the cl0p ransomware gang has taken responsibility for the alleged data theft involving the Oracle [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":1041,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[10],"tags":[516,517,518,16,519,520,285,521,522,111],"class_list":["post-636","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-news","tag-cl0p","tag-corporate-security","tag-cyberattack","tag-cybersecurity","tag-data-breach","tag-extortion","tag-google","tag-hackers","tag-oracle","tag-ransomware"],"_links":{"self":[{"href":"https:\/\/securis360.com\/blog\/wp-json\/wp\/v2\/posts\/636","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/securis360.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/securis360.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/securis360.com\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/securis360.com\/blog\/wp-json\/wp\/v2\/comments?post=636"}],"version-history":[{"count":1,"href":"https:\/\/securis360.com\/blog\/wp-json\/wp\/v2\/posts\/636\/revisions"}],"predecessor-version":[{"id":1042,"href":"https:\/\/securis360.com\/blog\/wp-json\/wp\/v2\/posts\/636\/revisions\/1042"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/securis360.com\/blog\/wp-json\/wp\/v2\/media\/1041"}],"wp:attachment":[{"href":"https:\/\/securis360.com\/blog\/wp-json\/wp\/v2\/media?parent=636"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/securis360.com\/blog\/wp-json\/wp\/v2\/categories?post=636"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/securis360.com\/blog\/wp-json\/wp\/v2\/tags?post=636"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}