The Cl0p ransomware group exploited zero-day vulnerabilities in Oracle's E-Business Suite (EBS) to gain unauthorized access and exfiltrate data from over 100 organizations, including Madison Square Garden. The attack vector targeted data stored within the enterprise management software, and the breach at MSG, involving names and SSNs, occurred via a third-party managed EBS instance in August 2025. The article does not provide specific CVE identifiers, CVSS scores, affected version ranges, fixed versions, or workarounds for the underlying Oracle EBS vulnerabilities.
Data Breaches Madison Square Garden Data Breach Confirmed Months After Hacker Attack The company is one of the many victims of the 2025 Oracle E-Business Suite (EBS) hacking campaign. By Eduard Kovacs | March 2, 2026 (8:53 AM ET) Flipboard Reddit Whatsapp Whatsapp Email Madison Square Garden has confirmed being impacted by a data breach stemming from a cybercrime campaign targeting customers of Oracle’s E-Business Suite (EBS) solution. In the Oracle EBS hacking campaign , the Cl0p ransomware and extortion group exploited zero-day vulnerabilities to gain access to data stored by more than 100 organizations in the enterprise management software. Madison Square Garden (MSG), the world-famous arena located in New York City, was named by the hackers as a victim of the campaign in November 2025. Data allegedly stolen from the company was leaked by the cybercriminals soon after, indicating that it had refused to pay a ransom. MSG did not respond to repeated requests for comment at the time. However, it has now confirmed suffering a data breach and it has started notifying individuals whose personal information was compromised as a result of the cybersecurity incident. According to notifications from MSG Entertainment, the impacted Oracle EBS instance is hosted and managed by a third-party vendor, whose investigation found that hackers stole data in August 2025. Advertisement. Scroll to continue reading. The entertainment company said personal information, including names and SSNs, was compromised. It’s unclear how many people are affected in total, but MSG Entertainment told the Maine Attorney General’s Office that 11 of the state’s residents are impacted. Related : 3.5 Million Affected by University of Phoenix Data Breach Related : Auto Parts Giant LKQ Confirms Oracle EBS Breach Related : Korean Air Data Compromised in Oracle EBS Hack Written By Eduard Kovacs Eduard Kovacs (@EduardKovacs) is the managing editor at SecurityWeek. He worked as a high school IT teacher before starting a career in journalism in 2011. Eduard holds a bachelor’s degree in industrial informatics and a master’s degree in computer techniques applied in electrical engineering. More from Eduard Kovacs Chilean Carding Shop Operator Extradited to US Juniper Networks PTX Routers Affected by Critical Vulnerability Critical Flaws Exposed Gardyn Smart Gardens to Remote Hacking Apple iPhone and iPad Cleared for Classified NATO Use Claude Code Flaws Exposed Developer Devices to Silent Hacking Trend Micro Patches Critical Apex One Vulnerabilities Google Disrupts Chinese Hackers Targeting Telecoms, Governments Medical Device Maker UFP Technologies Hit by Cyberattack Latest News Nick Andersen Appointed Acting Director of CISA AWS Expands Security Hub Into a Cross-Domain Security Platform North Korean APT Targets Air-Gapped Systems in Recent Campaign Google Working Towards Quantum-Safe Chrome HTTPS Certificates US-Israel and Iran Trade Cyberattacks: Pro-West Hacks Cause Disruption as Tehran Retaliates Hackers Weaponize Claude Code in Mexican Government Cyberattack Canadian Tire Data Breach Impacts 38 Million Accounts Trump Orders All Federal Agencies to Phase Out Use of Anthropic Technology Trending Daily Briefing Newsletter Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts. Webinar: Identity Under Attack: Why Every Business Must Respond Now February 11, 2026 Attendees will walk away with guidance for how to build robust identity defenses, unify them under a consistent security model, and ensure business operations move quickly without compromise. Register Virtual Event: Ransomware Resilience & Recovery 2026 Summit February 25, 2026 SecurityWeek’s 2026 Ransomware Summit will discuss a roadmap for defending the enterprise, from mitigating root causes to mastering recovery, giving security teams the critical insights needed to navigate and neutralize today’s ransomware extortion threats. Submit People on the Move Predictive revenue system company Clari + Salesloft has named Peter Liebert as CISO. Nscale has appointed Latha Maripuri as Chief Information Security Officer. BreachRx has named Young-Sae Song as Chief Marketing Officer. More People On The Move Expert Insights Four Risks Boards Cannot Treat as Background Noise The goal isn’t about preventing every attack but about keeping the business running when attacks succeed. (Steve Durbin) How to Eliminate the Technical Debt of Insecure AI-Assisted Software Development Developers must view AI as a collaborator to be closely monitored, rather than an autonomous entity to be unleashed. Without such a mindset, crippling tech debt is inevitable. (Matias Madou) Security in the Dark: Recognizing the Signs of Hidden Information Security failures don’t always start with attackers, sometimes they start with missing truth. (Joshua Goldfarb) Living off the AI: The Next Evolution of Attacker Tradecraft Living off the AI isn’t a hypothetical but a natural continuation of the tradecraft we’ve all been defending against, now mapped onto assistants, agents, and MCP. (Etay Maor) Why We Can’t Let AI Take the Wheel of Cyber Defense The fastest way to squander the promise of AI is to mistake automation for assurance, and novelty for resilience. (Steve Durbin) Flipboard Reddit Whatsapp Whatsapp Email