Oracle has confirmed a targeted email extortion campaign linked to the cl0p ransomware gang, as flagged by Google’s Mandiant team. The hackers are sending personalized emails threatening to leak sensitive data from Oracle’s cloud applications unless ransom is paid in cryptocurrency. This campaign coincides with quarterly financial announcements, aiming to exploit urgency and fear among high-level executives. Oracle has advised CEOs and CIOs to alert security teams, review cloud configurations, and educate staff on phishing tactics. This incident highlights the increasing focus of ransomware groups on high-profile enterprises and underscores the significant financial and reputational risks posed by such cyber threats, even if the claims of data breaches are unverified.