PeopleSoft 0-day affecting hundreds of organizations steals gigabytes of data
摘要
一个活跃的勒索软件组织ShinyHunters利用Oracle PeopleSoft软件套件中的高危零日漏洞(CVE-2026-35273,严重性评分9.8),已攻击约100家客户,并至少对一家进行勒索以换取不泄露数据。该漏洞为SSRF类型,可远程利用。Oracle已发布临时缓解措施,但尚未完全修复。谷歌Mandiant团队确认受害者正收到勒索要求。
One of the world’s most active ransomware groups exploited a critical vulnerability in Oracle’s PeopleSoft software suite and used it to target about 100 customers and extort at least one of them to pay up in exchange for not leaking stolen data, researchers said.
The group, tracked as ShinyHunters, had been exploiting the PeopleSoft vulnerability for more than two weeks before Oracle flagged it. CVE-2026-35273, as the vulnerability is tracked, carries a severity rating of 9.8 out of 10, making the former zero-day one of the year’s most critical vulnerabilities to be exploited.
Google’s Mandiant security team said it’s an SSRF (server-side request forgery), a vulnerability that allows attackers to send requests from a susceptible server to systems used by the targeted organization. Oracle said the SSRF is remotely exploitable, and the company has issued a stopgap mitigation but has yet to fully patch the flaw. Google has confirmed that victims are receiving extortion demands.
转载信息
评论 (0)
暂无评论,来留下第一条评论吧