ShinyHunters Hacked 100+ Organizations By Exploiting an Oracle PeopleSoft 0-Day (theregister.com) 4
ShinyHunters claims it exploited a critical Oracle PeopleSoft zero-day to compromise more than 100 organizations, including the University of Nottingham, where it says it stole 40GB of student and billing data. "ShinyHunters posted the UK university on its data leak site on Tuesday before publishing the stolen files later that same day, presumably because the school refused to pay the extortion demand," reports The Register. From the report: "University of Nottingham on our leak site is one of the first publicly confirmed incidents," a ShinyHunters spokesperson told us. "We have only just started outreach to affected orgs and are actively looking to reach an agreement with affected orgs." They didn't say when they planned to post the other 100 or so claimed victims.
A Google threat intelligence report published Thursday afternoon corroborated ShinyHunters' claims to have compromised more than 100 organizations. Google said it spotted malicious activity, "consistent with the exploitation of CVE-2026-35273," between May 27 and June 9, and notified more than 100 global orgs "whose IP addresses correlated with potentially vulnerable endpoints." Most of these, we're told, are based in the US and 68 percent are in the higher-education sector. Oracle has released a "patch availability document," but it's unclear whether a patch is currently available.
A Google threat intelligence report published Thursday afternoon corroborated ShinyHunters' claims to have compromised more than 100 organizations. Google said it spotted malicious activity, "consistent with the exploitation of CVE-2026-35273," between May 27 and June 9, and notified more than 100 global orgs "whose IP addresses correlated with potentially vulnerable endpoints." Most of these, we're told, are based in the US and 68 percent are in the higher-education sector. Oracle has released a "patch availability document," but it's unclear whether a patch is currently available.
Oracle so if you don't pay then you don't get the (Score:2)
Oracle so if you don't pay then you don't get the fix?
Re: (Score:2)
Oracle so if you don't pay then you don't get the fix?
While probably true, the enterprise customers using PeopleSoft ERP solutions are all paying for maintenance services (there really is no other option for such ERP solutions).
Re: (Score:2)
If you don't like paying through nose and ears, then why use Oracle anyway? SMH.
Risk management 101 (Score:2)
These are incredibly complex pieces of software, which simply shouldn't be made accessible to the big bad internet. We saw the same situation last year with Sharepoint, and are bound to see more of the same. I believe, that "attack surface" is the right term. There are many ways to provide these services to people working from home, which do not expose such high value targets to random hackers.
According to the article (I know, I know), of these 100+ affected entities more than two thirds were "institutions