Maritz Holdings Reports Data Breach Linked to Oracle EBS Exploitation
Learn More
Maritz Holdings, Inc., a Missouri-based business consulting firm, reports a data breach to on February 27, 2026. The CL0P ransomware group claimed responsibility for the attack.
Attackers exploited a previously unknown vulnerability in the Oracle EBS environment between August 10 and August 13, 2025. The attack occurred before Oracle publicly disclosed the flaw or released a security patch in October 2025. The hackers targeted the EBS instance used for invoicing, receiving payments, and issuing payments through Accounts Payable to steal sensitive files.
The compromised data includes:
- Full names
- Social Security numbers
- Financial account information
The number of affected individuals is not disclosed. Maritz is currently reviewing the data to identify all impacted employees and clients across its global operations. Affected individuals are being offered 24 months of free credit monitoring and identity restoration services.
