Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Caute_cautim
Community Champion
‎03-31-2025 05:28 PM
‎03-31-2025 05:28 PM

Oracle Cloud breach may impact 140,000 enterprise customers

Hi All

 

A threat actor has targeted the login infrastructure of Oracle Cloud, exploiting middleware vulnerability, and demanding ransom from over 140,000 tenants.

 

Don't pay the ransom!

https://www.csoonline.com/article/3852643/oracle-cloud-breach-may-impact-140000-enterprise-html

 

Regards

 

Caute_Cautim

Reply
0 Kudos
2 Replies
denbesten
Community Champion
‎04-01-2025 04:35 PM
‎04-01-2025 04:35 PM

Oracle continues to deny there has been a breach, yet (anonymous) customers have confirmed the disclosed creds did belong to them and were uniquely used with Oracle.  

Reply
denbesten
Community Champion
‎04-08-2025 12:35 AM
‎04-08-2025 12:35 AM

And now, oracle is starting to fess up.  The fundamental problem appears to be their failure to apply their own security patches on a timely basis.  The vulnerability has a 9.8 (out of 10) CVSS score.

 

So much for the theory that one of the primary advantages of using a manufacturer's own cloud infrastructure is that they have advance notice and can apply maintenance even before the patch is publicly released.

Reply
0 Kudos