Oracle PeopleSoft servers hacked in ShinyHunters data theft attacks
Summary
The ShinyHunters extortion gang is actively targeting Oracle PeopleSoft servers, claiming to have exfiltrated data from more than 100 organizations. The stolen data includes sensitive information such as employee names, addresses, and social security numbers, which are then offered for sale on a dark web forum.
IFF Assessment
This article reports on ongoing data theft attacks and data exfiltration by a known extortion gang, which is detrimental to the security and privacy of affected organizations and individuals.
Defender Context
Organizations utilizing Oracle PeopleSoft should be aware of this ongoing threat and verify their systems are adequately protected against unauthorized access. Defenders should monitor for indicators of compromise related to ShinyHunters activity and ensure robust data loss prevention (DLP) measures are in place.