ShinyHunters Targets Oracle PeopleSoft Servers
The ShinyHunters extortion gang is actively targeting Oracle PeopleSoft instances in cloud and on-premises environments, claiming data theft from over 100 organizations and 300 instances. Extortion demands are being sent to victims.
- enterprise-data
The ShinyHunters extortion gang has compromised more than 300 Oracle PeopleSoft servers belonging to over 100 organizations, stealing enterprise data and sending ransom demands to the victims.
Public reporting from BleepingComputer describes how the group is specifically targeting both cloud-hosted and on-premises PeopleSoft installations. The attackers claim to have extracted sensitive information from these systems, though the precise volume and type of records taken from each victim remain unclear. Affected organizations range across industries that rely on PeopleSoft for human resources, payroll, and enterprise resource planning functions. At the time of the attacks, it was not immediately known how many individual records were exposed or whether personal details of employees and their families had been taken.
Want the rest of this breakdown?
Sign up free to keep reading. Members get extended access, the weekly breach digest, and a complimentary Warden™ to see if their identity is exposed in the breaches we cover.
A breach leaks your credentials. Then hackers chain those credentials to your address, family, phone, and employer using public broker sites. We’re the only tool built around that chain.
⚠ Were you in this breach?
Free email scanner. We check your address against 15.4B+ leaked records in 15 seconds — then show you the $19 cleanup that removes you from the broker sites aggregating leaked data.
Check my email — free →