Data Breaches Michelin Confirms Data Breach Linked to Oracle EBS Attack The cybercriminals have leaked more than 300GB of files allegedly stolen from the tire giant. By Eduard Kovacs | March 11, 2026 (7:27 AM ET) Flipboard Reddit Whatsapp Whatsapp Email Tire giant Michelin has confirmed a data breach stemming from the massive cybercrime campaign that targeted organizations using Oracle’s E-Business Suite (EBS) solution. The Cl0p ransomware and extortion group has taken credit for the EBS hacking campaign , which involved the exploitation of zero-day vulnerabilities to gain access to data stored by the targeted organizations in Oracle’s enterprise management software. It’s worth noting that while Cl0p serves as the public-facing extortion brand for the Oracle EBS campaign, cybersecurity researchers believe the operation was driven by a sophisticated cluster of threat actors, most notably FIN11 . More than 100 allegedly targeted organizations have been listed on the Cl0p website. One of them is tire maker Michelin, which has now confirmed for SecurityWeek that it was one of the impacted organizations. “Like countless organizations every day, Michelin is at times the object of cyber-attacks,” a Michelin spokesperson said, adding, “Despite the highest levels of protection we have in place, Michelin has recently experienced such an incident at the same time as many other companies.” Advertisement. Scroll to continue reading. The company said its teams promptly conducted a thorough investigation and determined that an Oracle EBS zero-day was exploited in the attack. “Thanks to Michelin’s expertise and processes in the matter, all the corrective actions were taken at the appropriate time and were totally effective. The situation is now fixed,” the spokesperson said. The company has confirmed that the hackers accessed some files, but said only “a small, localized, volume of data with no sensitive or technical IT information was affected by the incident”. Michelin pointed out that no ransomware was involved in the attack and that there has been no impact on its global systems. “Please be sure that the safety of the data and services of our customers and partners is of utmost importance to us,” the spokesperson said. The cybercriminals have made public more than 315GB of archives allegedly containing files stolen from Michelin. SecurityWeek has not downloaded the leaked data, but a brief metadata and file tree analysis indicates that at least some of the files indeed originate from an Oracle EBS environment. Madison Square Garden also confirmed recently that it was targeted in the Oracle EBS campaign. The admission came months after the hackers leaked more than 210GB of archives containing files allegedly stolen from the company. Related : Auto Parts Giant LKQ Confirms Oracle EBS Breach Related : 3.5 Million Affected by University of Phoenix Data Breach Related : Korean Air Data Compromised in Oracle EBS Hack Written By Eduard Kovacs Eduard Kovacs (@EduardKovacs) is senior managing editor at SecurityWeek. He worked as a high school IT teacher before starting a career in journalism in 2011. Eduard holds a bachelor’s degree in industrial informatics and a master’s degree in computer techniques applied in electrical engineering. More from Eduard Kovacs Thousands Affected by Ericsson Data Breach OpenAI Rolls Out Codex Security Vulnerability Scanner Hundreds of Salesforce Customers Allegedly Targeted in New Data Theft Campaign Cylake Raises $45 Million to Secure Organizations Barred From Cloud Cybersecurity M&A Roundup: 42 Deals Announced in February 2026 Recent Cisco Catalyst SD-WAN Vulnerability Now Widely Exploited Rockwell Vulnerability Allowing Remote ICS Hacking Exploited in Attacks James ‘Aaron’ Bishop Tapped to Serve as New Pentagon CISO Latest News Quantro Security Emerges From Stealth With $2.5 Million in Funding ‘BlackSanta’ Malware Activates EDR and AV Killer Before Detonating Payload ICS Patch Tuesday: Vulnerabilities Fixed by Siemens, Schneider, Moxa, Mitsubishi Electric Microsoft Patches 83 Vulnerabilities Adobe Patches 80 Vulnerabilities Across Eight Products Jazz Emerges From Stealth With $61M in Funding for AI-Powered DLP Kai Emerges From Stealth With $125M in Funding for AI Platform Bridging IT and OT Security Webinar Today: Securing Fragile OT in an Exposed World Trending Daily Briefing Newsletter Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts. Webinar: Securing Fragile OT in an Exposed World March 10, 2026 Get a candid look at the current OT threat landscape as we move past "doom and gloom" to discuss the mechanics of modern OT exposure. Register Virtual Event: Supply Chain Security and Third-Party Risk Summit March 18, 2026 Join the event where top security experts unpack the biggest software supply chain risks. Register People on the Move Ed Jennings has been appointed President and CEO at Darktrace. Ironscales has appointed Steven Malone as CSO and Amit Bluman as SVP of Research & Development. Synack has appointed Angela Heindl-Schober Chief Marketing Officer. More People On The Move Expert Insights SIM Swaps Expose a Critical Flaw in Identity Security SIM swap attacks exploit misplaced trust in phone numbers and human processes to bypass authentication controls and seize high-value accounts. (Torsten George) Four Risks Boards Cannot Treat as Background Noise The goal isn’t about preventing every attack but about keeping the business running when attacks succeed. (Steve Durbin) How to Eliminate the Technical Debt of Insecure AI-Assisted Software Development Developers must view AI as a collaborator to be closely monitored, rather than an autonomous entity to be unleashed. Without such a mindset, crippling tech debt is inevitable. (Matias Madou) Security in the Dark: Recognizing the Signs of Hidden Information Security failures don’t always start with attackers, sometimes they start with missing truth. (Joshua Goldfarb) Living off the AI: The Next Evolution of Attacker Tradecraft Living off the AI isn’t a hypothetical but a natural continuation of the tradecraft we’ve all been defending against, now mapped onto assistants, agents, and MCP. (Etay Maor) Flipboard Reddit Whatsapp Whatsapp Email