-
Oracle Health breach compromises patient data at US hospitals
A breach at Oracle Health impacts multiple US healthcare organizations and hospitals after a threat actor stole patient data from legacy servers.
- March 28, 2025
- 10:13 AM
0
-
Oracle customers confirm data stolen in alleged cloud breach is valid
Despite Oracle denying a breach of its Oracle Cloud federated SSO login servers and the theft of account data for 6 million people, BleepingComputer has confirmed with multiple companies that associated data samples shared by the threat actor are valid.
- March 26, 2025
- 04:20 PM
10
-
New Webinar: Choose Your Own Investigation — Browser Attack Edition
Modern attacks have shifted focus to the browser, yet detection tools remain largely blind to the crucial activity happening there.
Join Push Security on February 11th for an interactive "choose-your-own-adventure" webinar on ClickFix, credential phishing, and other in-browser attacks we've observed in the wild.
-
Oracle denies breach after hacker claims theft of 6 million data records
Oracle denies it was breached after a threat actor claimed to be selling 6 million data records allegedly stolen from the company's Oracle Cloud federated SSO login servers
- March 21, 2025
- 04:43 PM
- 3
-
CISA warns of critical Oracle, Mitel flaws exploited in attacks
CISA has warned U.S. federal agencies to secure their systems against critical vulnerabilities in Oracle WebLogic Server and Mitel MiCollab systems that are actively exploited in attacks.
- January 07, 2025
- 01:45 PM
- 0
-
Oracle warns of Agile PLM file disclosure flaw exploited in attacks
Oracle has fixed an unauthenticated file disclosure flaw in Oracle Agile Product Lifecycle Management (PLM) tracked as CVE-2024-21287, which was actively exploited as a zero-day to download files.
- November 19, 2024
- 02:56 PM
- 0
-
New Linux malware Hadooken targets Oracle WebLogic servers
Hackers are targeting Oracle WebLogic servers to infect them with a new Linux malware named "Hadooken," which launches a cryptominer and a tool for distributed denial-of-service (DDoS) attacks.
- September 13, 2024
- 01:05 PM
- 0
-
Oracle warns that macOS 14.4 update breaks Java on Apple CPUs
Oracle warned Apple customers to delay installing the latest macOS 14.4 Sonoma update because it will break Java on Apple silicon CPUs.
- March 19, 2024
- 12:52 PM
- 2
-
CISA warns of actively exploited Windows, Sophos, and Oracle bugs
The U.S. Cybersecurity & Infrastructure Security Agency has added to its catalog of known exploited vulnerabilities (KEV) three security issues that affect Microsoft devices, a Sophos product, and an enterprise solution from Oracle.
- November 17, 2023
- 09:08 AM
- 0
-
UK heat wave causes Google and Oracle cloud outages
An ongoing heatwave in the United Kingdom has led to Google Cloud and Oracle Cloud outages after cooling systems failed at the companies' data centers.
- July 19, 2022
- 04:07 PM
- 0
-
BPFDoor malware uses Solaris vulnerability to get root privileges
New research into the inner workings of the stealthy BPFdoor malware for Linux and Solaris reveals that the threat actor behind it leveraged an old vulnerability to achieve persistence on targeted systems.
- May 25, 2022
- 07:21 AM
- 0
-
Improve your project management skills with this Primavera P6 bundle
Project portfolio management is a crucial tool for high-level work and complex tasks at the enterprise level. The Complete Oracle Primavera P6 Software Training Bundle shows you how to effectively deploy PPM software for $15, 96% off the $400 MSRP.
- April 07, 2022
- 02:16 PM
- 0
-
Microsoft removes Windows 11 update block for VirtualBox users
Microsoft has removed the last Windows 11 safeguard hold after Oracle addressed a known VirtualBox issue causing errors and virtual machine start failures when Hyper-V or the Windows Hypervisor were installed.
- March 14, 2022
- 11:14 AM
- 2
-
Hacking group used ProxyLogon exploits to breach hotels worldwide
A newly discovered cyberespionage group has been targeting hotels worldwide around the world since at least 2019, as well as higher-profile targets such as governments, international organizations, law firms, and engineering companies.
- September 23, 2021
- 03:50 PM
- 0
-
Master the top 3 CRM platforms including Oracle, SAP and Salesforce
The Ultimate Oracle, SAP & Salesforce Training Prep Bundle helps you gain this knowledge, with 85 hours of tutorials working towards certification. You can get it today for only $24.99 over at Bleeping Computer Deals.
- May 04, 2021
- 07:41 AM
- 0
-
Hezbollah hackers attack unpatched Atlassian servers at telcos, ISPs
Volatile Cedar, an advanced hacker group believed to be connected to the Lebanese Hezbollah Cyber Unit, has been silently attacking companies around the world in espionage operations.
- January 28, 2021
- 01:42 PM
- 2
-
Critical Oracle WebLogic flaw actively exploited by DarkIRC malware
A botnet known as DarkIRC is actively targeting thousands of exposed Oracle WebLogic servers in attacks designed to exploit the CVE-2020-14882 remote code execution (RCE) vulnerability fixed by Oracle two months ago.
- December 01, 2020
- 11:30 AM
- 0
-
ModPipe malware decrypts Oracle point-of-sale database passwords
Security researchers have discovered a new malware geared with modules that target Oracle Micros Hospitality RES 3700 point-of-sale systems, one of the most widely used management software in the hospitality industry.
- November 12, 2020
- 06:12 AM
- 1
-
Critical bug actively used to deploy Cobalt Strike on Oracle servers
Threat actors are actively exploiting vulnerable Oracle WebLogic servers unpatched against CVE-2020-14882 to deploy Cobalt Strike beacons to gain persistent remote access to compromised devices.
- November 05, 2020
- 12:55 PM
- 0
-
Oracle issues emergency patch for critical WebLogic Server flaw
Oracle issued an out-of-band security update over the weekend to address a critical remote code execution (RCE) vulnerability impacting multiple Oracle WebLogic Server versions.
- November 02, 2020
- 02:06 PM
- 0
-
Critical Oracle WebLogic flaw actively targeted in attacks
Threat actors have started to hunt for servers running Oracle WebLogic instances vulnerable to a critical flaw that allows taking control of the system with little effort and no authentication.
- October 29, 2020
- 08:07 AM
- 0
10
