> TritonInfoSec News
Home / Jun 14, 2026 / Story
0
#2 CyberScoop general June 12, 2026 at 16:12 UTC

ShinyHunters is actively extorting universities after exploiting an unpatched Oracle flaw

By Matt Kapko

AI Summary

ShinyHunters is extorting universities after exploiting an unpatched Oracle PeopleSoft zero-day (CVE-2026-35273) that Oracle had still not formally patched as of publication. The campaign, active since late May, targets higher education institutions and underscores the risk of unpatched ERP systems exposed to the internet. Security teams at universities should audit PeopleSoft exposure immediately given Oracle's delayed public response.

Read full article → https://cyberscoop.com/oracle-peoplesoft-zero-day-…

Relevance score: 87.0/100

# More from June 14

  1. 1
    Google Confirms Exploitation of Oracle PeopleSoft Zero-Day by ShinyHunters SecurityWeek
  2. 3
    400+ Arch Linux AUR Packages Hijacked to Install Rust Credential Stealer The Hacker News
  3. 4
    Critical Splunk Enterprise Flaw Lets Attackers Run Code Without Authentication The Hacker News
  4. 5
    Chinese hackers hijack auth flow, spy on isolated network for a decade BleepingComputer
  5. 6
    FBI takes down massive China-based cybercrime network that caused $1.9B in losses CyberScoop
  6. 7
    Ivanti Sentry Exploitation Attempts Hitting Honeypots SecurityWeek
  7. 8
    U.S. Orders Anthropic to Suspend Fable 5 and Mythos 5 Access for Foreign Nationals The Hacker News
  8. 9
    Over 400 Arch Linux packages compromised to push rootkit, infostealer BleepingComputer
  9. 10
    phpBB forum fixes auth bypass bug lurking for a decade BleepingComputer