Oracle warns of security bug that hackers abused to breach 100+ companies

The tech giant warned of a security flaw that a cybercrime gang said it's exploiting as part of a mass-hacking campaign.
SecurityWeek

Oracle Addresses PeopleSoft Vulnerability Amid Reports of Zero-Day Attacks

Oracle released an out-of-band update for PeopleSoft to address CVE-2026-35273, a zero-day vulnerability likely exploited by ...

Cybercriminals claim breach of Oracle PeopleSoft servers at 100-plus organizations

The ShinyHunters hacking gang claims to have compromised the Oracle PeopleSoft servers of more than 100 organizations, ...

Google says ShinyHunters hackers targeting education sector via Oracle exploit

June 11 (Reuters) - Alphabet's cybersecurity unit Mandiant and Google Threat Intelligence Group said Thursday they had ...
Dark Reading

ShinyHunters Uses Oracle Zero-Day to Rampage Higher Ed

A major bug in Oracle's ERP software disproportionately affected American universities, and hackers have capitalized by stealing gobs of data.
CSO Online

Oracle PeopleSoft zero‑day fuels ShinyHunters extortion spree

Attackers leveraged a critical unauthenticated RCE bug to breach higher‑ed institutions, deploy stealth remote access tools, ...
The Motley Fool

Oracle Stock Is Selling Off on Its Massive AI Spending Plans. Here's Who Gets Paid When Oracle Spends.

Instead, investors seem focused on the bill. Oracle's capital expenditures hit $55.7 billion in fiscal 2026 -- above the $50 billion management forecast in March -- and free cash flow came in at ...
The Next Web

ShinyHunters breached 100+ companies through an unpatched Oracle PeopleSoft zero-day

ShinyHunters exploited CVE-2026-35273 (CVSS 9.8) to breach 100+ organisations using Oracle PeopleSoft. Two-thirds are universities. No patch exists yet.

Explained: How ShinyHunters hacked over 100 organisations using an Oracle bug

Cybersecurity experts from Google's Threat Intelligence Group have alerted that the hacking group ShinyHunters exploited a ...