{"id":230393,"date":"2026-06-11T20:31:00","date_gmt":"2026-06-12T00:31:00","guid":{"rendered":"https:\/\/testing.news-you-need.com\/index.php\/2026\/06\/11\/oracle-urges-patches-as-hackers-breach-peoplesoft-servers\/"},"modified":"2026-06-12T01:10:13","modified_gmt":"2026-06-12T05:10:13","slug":"oracle-urges-patches-as-hackers-breach-peoplesoft-servers","status":"publish","type":"post","link":"https:\/\/testing.news-you-need.com\/index.php\/2026\/06\/11\/oracle-urges-patches-as-hackers-breach-peoplesoft-servers\/","title":{"rendered":"Oracle Urges Patches as Hackers Breach PeopleSoft Servers"},"content":{"rendered":"

Oracle Urges Patches as Hackers Breach PeopleSoft Servers<\/a><\/p>\n

https:\/\/www.pymnts.com\/cybersecurity\/2026\/oracle-urges-immediate-software-patches-as-hackers-breach-peoplesoft-servers\/<\/a><\/p>\n

Publish Date: 2026-06-11 20:31:00<\/a><\/p>\n

Source Domain: www.pymnts.com<\/a><\/p>\n

Author: <\/a><\/p>\n

Using an unordered list, summarize the following article with between 4 and 8 key points. Oracle has discovered a vulnerability in some of its PeopleSoft software that is remotely exploitable without authentication and can result in remote code execution if exploited by hackers, the company said in a Wednesday (June 10) security alert.<\/p>\n

The vulnerability (CVE-2026-35273) is in Oracle PeopleSoft PeopleTools and may affect Oracle PeopleSoft Enterprise Applications, according to the security alert.
\n\u201cWe consider implementation of the recommended mitigations to be a high-priority risk reduction measure and strongly recommend immediate action to address the identified exposure,\u201d the security alert said. \u201cOracle always recommends that customers remain on actively-supported versions and apply all Critical Patch Updates, Critical Security Patch Updates and Security Alerts without delay.\u201d
\nMandiant and Google Threat Intelligence Group (GTIG) addressed the exploit in a Thursday (June 11) blog post, saying they identified an active compromise and extortion campaign targeting the Oracle PeopleSoft application infrastructure.
\nThe companies said they notified more than 100 global organizations that could be vulnerable to this exploit and found that most were in the United States and 68% were within the higher education sector.
\nThey also said they found data leaks of stolen organization data published on a hacking group\u2019s site on Tuesday (June 9).Advertisement: Scroll to Continue <\/p>\n

Mandiant and GTIG also shared in their blog post a post from the hacking group\u2019s website in which the group claimed to have stolen billing and payment records, credit card and payment details, student finance data and other sensitive data.
\nTechCrunch reported Thursday that the hacking group claimed to have breached more than 100 organizations that use PeopleSoft servers.
\nThese reports follow several other recent data breaches and other cyberattacks.
\nToymaker Hasbro reported in April that it had uncovered a breach, had taken some of its systems offline, and believed it could take weeks to resolve the cyberattack.
\nIt was reported in February that 12.4 million records of customer data were stolen from car shopping site CarGurus and posted by a hacking group.
\nIn October 2025, it was reported that a hacking group claimed to have stolen 1 billion records from cloud databases hosted by Salesforce and was attempting to extort Salesforce and the companies to which that data belonged.<\/p>\n

<\/p>\n","protected":false},"excerpt":{"rendered":"

Oracle Urges Patches as Hackers Breach PeopleSoft Servers https:\/\/www.pymnts.com\/cybersecurity\/2026\/oracle-urges-immediate-software-patches-as-hackers-breach-peoplesoft-servers\/ Publish Date: 2026-06-11 20:31:00 Source Domain:…<\/p>\n","protected":false},"author":1,"featured_media":230394,"comment_status":"closed","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/www.pymnts.com\/wp-content\/uploads\/2026\/06\/Oracle-cyberattack-1.jpg","fifu_image_alt":"","footnotes":""},"categories":[15],"tags":[30,24,31,27],"class_list":["post-230393","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cybersecurity","tag-breach","tag-cybersecurity","tag-exploit","tag-vulnerability"],"_links":{"self":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/230393"}],"collection":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/comments?post=230393"}],"version-history":[{"count":1,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/230393\/revisions"}],"predecessor-version":[{"id":230395,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/230393\/revisions\/230395"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/media\/230394"}],"wp:attachment":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/media?parent=230393"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/categories?post=230393"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/tags?post=230393"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}