Morning Overview on MSN

A 9.8-rated Oracle flaw let hackers seize servers for two weeks before any patch existed

Organizations running Oracle WebLogic Server faced active attacks for roughly two weeks before any official fix arrived, ...

Oracle warns customers of critical PeopleSoft attack after hundreds of servers hacked by apparent ShinyHunters data theft attacks

High-severity CVSS 9.8 PeopleSoft vulnerability caused over 100 organizations to become victims, including universities.
The Silicon ReviewOpinion

Cybersecurity Incident at Oracle: ShinyHunters Hit 100+ Organizations While Oracle Pretends Nothing Happened

Cybersecurity incident at Oracle as ShinyHunters breach PeopleSoft servers at over 100 organizations, stealing student ...
CSO Online

Oracle’s first monthly patch release fixes 35 flaws, including 11 rated ‘critical’

Oracle has released the first security fixes in its new monthly Critical Security Patch Update (CSPU) cycle, designed to ...
Morning Overview on MSN

The Oracle server bug hit universities hardest, with the extortion crew stealing data and demanding payment

Universities running Oracle servers became the primary targets of an extortion campaign that exploited a missing ...
SecurityWeek

Oracle’s First Monthly Patches Resolve 77 Vulnerabilities

Oracle has released its first monthly Critical Security Patch Update (CSPU) to resolve 77 vulnerabilities across its products ...
SecurityWeek

Oracle Addresses PeopleSoft Vulnerability Amid Reports of Zero-Day Attacks

Oracle released an out-of-band update for PeopleSoft to address CVE-2026-35273, a zero-day vulnerability likely exploited by ...
InfoWorld

Oracle patches critical database hole

The buffer overflow vulnerability affects all supported versions of Oracle database servers and could enable a remote attacker to compromise the data Oracle released a patch for a recently-discovered ...