I8-D

Global Cyber Chaos: US Economy, Oracle, Salesforce Hit Hard

by

A I
in

Breaking: Major Cyberattacks Disrupt Global Tech Infrastructure and US Economic Systems

October 10, 2025 — A coordinated wave of sophisticated cyberattacks has struck critical infrastructure, enterprise software platforms, and U.S. government economic reporting systems over the past 24 hours, marking one of the most significant cyber disruption events of 2025.

US Government Economic Data Systems Paralyzed

In an unprecedented development, a sophisticated coordinated cyberattack crippled official U.S. economic reporting systems on October 10, disrupting operations at the Bureau of Labor Statistics (BLS), Bureau of Economic Analysis (BEA), and Census Bureau. The attacks forced delays in scheduled data releases and triggered immediate market volatility as agencies scrambled to restore data integrity and verify the accuracy of compromised systems.

The timing and coordination of the attack suggest a well-planned operation targeting the infrastructure that financial markets depend on for critical economic indicators.

Clop Ransomware Gang Exploits Oracle Zero-Day Vulnerability

The notorious Clop ransomware gang has launched a massive campaign exploiting a zero-day vulnerability in Oracle E-Business Suite (CVE-2025-61882), affecting dozens of organizations worldwide. Security researchers report that attackers achieved remote code execution through a sophisticated chain of exploits including:

  • Server-Side Request Forgery (SSRF)
  • CRLF injection techniques
  • Authentication bypass mechanisms
  • XSL template injection for establishing reverse shells

The breach has enabled threat actors to exfiltrate sensitive corporate data and establish persistent access to compromised Oracle EBS servers.

Salesforce Stands Firm Against Extortion Demands

Enterprise software giant Salesforce confirmed it has refused to pay ransom demands following a series of targeted breaches that resulted in massive data theft. The attacks, attributed to the cybercriminal collective known as Scattered Lapsus$ Hunters, employed advanced social engineering tactics including:

  • Vishing (voice phishing) campaigns impersonating IT personnel
  • Deployment of malicious OAuth applications to harvest authentication tokens
  • Credential modification to maintain persistent access

Extortion groups established leak sites and issued payment deadlines of October 10 for affected organizations. Salesforce’s decision to refuse payment aligns with growing industry consensus against negotiating with cybercriminals, despite the risk of data publication.

Supply Chain Attacks Escalate Across Critical Infrastructure

Business leaders across multiple sectors report a dramatic surge in supply chain-focused cyberattacks. Recent campaigns have exploited critical vulnerabilities including:

  • GoAnywhere MFT (CVE-2025-10035) — Secure file transfer platform compromises
  • Oracle EBS (CVE-2025-61882) — Enterprise resource planning system exploits
  • Persistent Microsoft product vulnerabilities — Ongoing exploitation of various Microsoft ecosystem weaknesses

Security analysts warn that the interconnected nature of modern supply chains amplifies the impact of individual breaches, creating cascading disruptions across entire industry sectors.

Industry Response and Implications

The simultaneous targeting of government infrastructure, enterprise software platforms, and supply chain systems represents an escalation in both the sophistication and coordination of cybercriminal operations. The refusal of major corporations like Salesforce to meet extortion demands may signal a strategic shift in how enterprises respond to ransomware attacks, though the effectiveness of this approach remains under scrutiny as threat actors continue to publish stolen data.

Federal agencies affected by the economic reporting system attacks have not yet disclosed the full extent of the intrusion or estimated timelines for complete restoration of services. Market observers are closely monitoring the situation as the integrity of economic data remains a critical concern for financial institutions and policymakers.

This is a developing story. Additional details will be reported as information becomes available from affected organizations and investigating authorities.

Key Vulnerabilities Referenced

  • CVE-2025-10035 (GoAnywhere MFT)
  • CVE-2025-61882 (Oracle E-Business Suite)

Organizations Confirmed Affected

  • Bureau of Labor Statistics (BLS)
  • Bureau of Economic Analysis (BEA)
  • U.S. Census Bureau
  • Salesforce
  • Multiple Oracle EBS enterprise customers (names withheld pending disclosure)