Envoy Air, an American Airlines subsidiary, has confirmed that it was among the dozens of organizations compromised via Oracle E-Business Suite (EBS) security flaws, following claims by Clop extortionists that its parent company was one of its victims.

"We are aware of the incident involving Envoy's Oracle E-Business Suite application," an Envoy spokesperson told The Register .

"Upon learning of the matter, we immediately began an investigation and law enforcement was contacted," the statement continued. "We have conducted a thorough review of the data at issue and have confirmed no sensitive or customer data was affected. A limited amount of business information and commercial contact details may have been compromised."

The breach did not touch any American Airlines IT environments or

See Full Page