Facebook
Britain's News Portal
Around The Clock
BREAKING
Loading latest headlines…

Oracle warns of critical PeopleSoft security flaw exploited by hackers

Oracle has issued a warning about a critical security vulnerability in its PeopleSoft software, which a cybercrime group claims to have exploited in a widespread hacking campaign. Google's security unit, Mandiant, has notified over 100 organisations potentially affected.

  • Oracle identified a critical vulnerability in its PeopleSoft software, used for payroll and HR.
  • The ShinyHunters cybercrime group claims to have exploited this flaw to breach over 100 organisations.
  • The vulnerability, a 'zero-day', can be exploited remotely without authentication, and currently has no patch.
  • Mandiant, Google's security unit, confirmed the exploitation and notified affected organisations globally.
  • Many compromised organisations are in higher education, with hackers claiming to have stolen student records.

Tech giant Oracle has issued a stark warning to its corporate clients regarding a critical security flaw within its widely used PeopleSoft software. This advisory comes swiftly after a prominent cybercrime group, ShinyHunters, publicly claimed responsibility for exploiting the vulnerability in a large-scale hacking operation.

The vulnerability, which Oracle described in a security advisory on Thursday, affects PeopleSoft software, a system extensively adopted by large organisations for managing critical functions such as payroll and human resources. Worryingly, the flaw can be exploited remotely over the internet without requiring any authentication, such as a password, making it particularly dangerous.

Mandiant, the cybersecurity unit owned by Google, corroborated the claims, stating in a blog post that the newly identified Oracle flaw is indeed the same bug being leveraged by the ShinyHunters group. Mandiant has proactively informed more than 100 global organisations, predominantly in the United States, about their potentially vulnerable systems, urging them to restrict access.

The cybercrime gang had previously informed TechCrunch that they had compromised companies by abusing an unpatched flaw in PeopleSoft servers. This type of vulnerability is known as a 'zero-day' because the affected company, in this instance Oracle, had no prior warning or opportunity to fix it before its discovery and exploitation by malicious actors.

While Oracle has yet to release a definitive patch for the vulnerability, it has recommended that customers utilising PeopleSoft software implement specific mitigations to prevent exploitation. Mandiant noted that while some organisations successfully blocked the malicious activity or remediated the vulnerabilities, others experienced compromises, leading to stolen data being published on the ShinyHunters' data leak website.

A significant proportion, approximately two-thirds, of the organisations notified by Mandiant are in the higher education sector, aligning with earlier claims made by ShinyHunters. The group reportedly claimed to have stolen hundreds of thousands of student records, including full names, home addresses, phone numbers, emails, dates of birth, and academic details, from some of the compromised educational institutions.

Why this matters: This incident highlights the pervasive threat of cybercrime to large organisations and the potential for sensitive personal data to be exposed. The exploitation of 'zero-day' vulnerabilities underscores the constant challenge businesses face in protecting their digital infrastructure.

What this means for you: What this means for you: If you are an employee or student whose personal data is managed by an organisation using Oracle PeopleSoft, particularly in higher education, your information may be at risk. Stay vigilant for unusual activity or communications, and consider strong password practices.

Related Articles

Get the news that matters.

Join thousands of readers getting the best of British news straight to their inbox.