Anywhere Real Estate Data Breach via Oracle EBS Zero-Day Vulnerability

Anywhere Real Estate Inc. reported a data breach caused by a compromise its Oracle E-Business Suite (EBS) environment on November 24, 2025. The incident impacted several subsidiaries, including Cartus, National Realty Trust, and the Real Estate Franchise Group. The CL0P ransomware group has claimed responsibility for the attack.

Attackers gained access to Oracle EBS environment and exported historical data from the system, exploiting a zero-day vulnerability. The CL0P group allegedly used this access to download records before 

The hackers claim that compromised data includes:

• Full names and home addresses
• Social Security numbers
• Dates of birth
• Contact information
• Basic job details

The number of affected individuals is 17,429, primarily current and former employees, franchisees, and brokers. The organization is offering 24 months of complimentary credit monitoring and identity restoration services.

The company reported to the state attorneys general in early February 2026,