Envoy Air, a subsidiary of American Airlines, was the target of a cyberattack involving its Oracle E-Business Suite application. The incident was brought to light by the Clop ransomware group, which has been linked to Russian networks and is known for extortion operations. The attackers claimed to have compromised over sixty organizations by exploiting vulnerabilities in Oracle EBS. Envoy has confirmed the incident and stated that an investigation was launched immediately and law enforcement was notified. According to an Envoy spokesperson, no sensitive customer data, passenger records, or personally identifiable information was breached, and flight operations were not affected. However, some limited business information and commercial contact details may have been accessed. Cybersecurity experts note that this event highlights the risks associated with legacy enterprise systems and the necessity for robust security measures. Envoy has committed to improving its monitoring and updating its Oracle systems in response to the attack.