Security news aggregator

Latest coverage for Oracle

Stay informed on Oracle security updates, vulnerabilities, and best practices for safeguarding your data with our focused Information Security insights.

8 headlines in this view

Refine the feed

Search across headline titles and summaries.

Tag briefing

Background for this topic.

Oracle in information security is not about the prophetic figure of ancient myths, but rather it pertains to a critical aspect of cyber security concerning Oracle Corporation's products, particularly its database management systems. Oracle databases are widespread in enterprise environments, storing a wealth of sensitive information that, if compromised, could lead to significant data breaches and financial losses.

Oracle security, therefore, encompasses the various measures and practices that protect Oracle database servers from unauthorized access, misuse, or attack. This includes securing the database from internal threats, like privileged user abuse, and external threats such as SQL injection attacks. It also involves ensuring the integrity, confidentiality, and availability of the data held within Oracle databases through a combination of technical controls, policies, and procedures. Vigilance in monitoring, patch management, and staying informed about the latest Oracle security updates and vulnerabilities are essential components of maintaining robust security for Oracle-based systems.

Volume over time

Weekly headline count for the current query.

Showing 8 most recent headlines Filtered view
Bank Info Security 1 day, 19 hours ago

ShinyHunters Hits Universities Via Oracle Zero-Day

Mandiant: 68% of Targets Were Higher Ed Institutions Running PeopleSoftShinyHunters exploited a critical zero-day in Oracle PeopleSoft to breach more than 100 organizations globally, researchers at Mandiant and Google's Threat Intelligence Group said, with universities and colleges accounting for the majority of confirmed targets in the active extortion campaign.

More from Bank Info Security 16 Jun 2026, 9:30 a.m. Incident · 8 stories 0-Day Breach Critical Education Extortion Google Oracle Research

ShinyHunters exploited a critical Oracle PeopleSoft zero-day to breach over 100 organizations, mostly universities, before a patch was available. Mandiant and Google’s Threat Intelligence Group published an analysis of an active ShinyHunters campaign on June 11, one day after Oracle finally issued an advisory for the vulnerability being exploited. The gap matters: the activity ran […]

More from Security Affairs 12 Jun 2026, 10:49 p.m. Incident · 8 stories 0-Day Breach Critical Flaw Google Oracle Patch Remote Code Execution Vulnerability

Oracle is warning about a critical PeopleSoft Suite zero-day vulnerability tracked as CVE-2026-35273 that allows unauthenticated remote code execution, with the flaw actively exploited in ShinyHunter data theft attacks. [...]

More from Bleeping Computer 12 Jun 2026, 7:39 a.m. Incident · 8 stories Actively exploited CVE-2026-35273 0-Day CVE Critical Flaw Mitigation Oracle Remote Code Execution Theft Unauthenticated Vulnerability Warning