Cyber Security

6 Million Pieces of Company Data Up for Sale, Oracle Strongly Denies Breach Claims

The claim that a hacker stole 6 million company records from Oracle systems has caused a great stir in the technology world. Oracle has categorically denied these claims made by CloudSEK. However, cybersecurity experts warn that the risk could be serious.

bastamabastama
Apr 29, 2025 - 00:52
Apr 29, 2025 - 01:11
 0  3
6 Million Pieces of Company Data Up for Sale, Oracle Strongly Denies Breach Claims
Cloud Sunucu
Cloud Sunucu

CloudSEK: Millions of company data leaked
According to a report published by Bengaluru-based cybersecurity firm CloudSEK, a hacker with the pseudonym 'rose87168' has put up for sale online 6 million company records that he claims to have stolen from Oracle systems. The report stated that the data in question includes critical files, encrypted login credentials and keys used for secure connections.
 
 
Oracle's outright denial of the allegations
Oracle, in its public statement, defended the allegations as untrue. The statement included the following statements: 'There was no data breach in Oracle Cloud. The identity information that was revealed does not belong to Oracle Cloud. There is no data loss among our customers.'
 
Ransom demand and decryption attempts
According to CloudSEK’s assessments, the hacker reached out to more than 140,000 companies whose data security was compromised and demanded ransom in exchange for the deletion of stolen data. It was reported that the hacker also asked online platforms for help in decrypting encrypted information and offered a reward to those who could provide a solution.
 
Is the vulnerability Oracle WebLogic Server?
The report suggested that the hacker may have exploited a vulnerability in the login module in Oracle Cloud systems. Experts believe that this vulnerability may be related to Oracle WebLogic Server software.
 
Potential threat to companies
The alleged leaked data includes JKS files, encrypted single sign-on (SSO) passwords, various key files, and Oracle Enterprise Manager JPS keys. Such information could pose a risk of infiltration into wider systems through unauthorized access.
 
Experts call on companies to take urgent action
In order to prevent possible threats, companies are advised to update their passwords immediately and choose strong, complex passwords. Additionally, it is recommended to activate multi-factor authentication (MFA) systems.
 
 
 
Source: CUMHA - CUMHURS NEWS AGENCY

Tags:

What's Your Reaction?

Like Like 0
Dislike Dislike 0
Love Love 0
Funny Funny 0
Angry Angry 0
Sad Sad 0
Wow Wow 0
bastama
bastama
Sınırsız Hosting
Sınırsız Hosting

Related Posts

Cyber ​​threats are growing gradually: corporate and personal data are at risk

Cyber ​​threats are growing gradually: corporate and pe...

bastama Mar 10, 2025  0  5

NVISO Labs: 'Hackers Use Microsoft Teams and Spam Emails to Launch Social Engineering Attacks'

NVISO Labs: 'Hackers Use Microsoft Teams and Spam Email...

bastama Feb 27, 2025  0  10

Italian Government: 'Paragon Spyware Targeted Citizens Across Europe'

Italian Government: 'Paragon Spyware Targeted Citizens ...

bastama Feb 27, 2025  0  2

2024: A Year of Rising Cybersecurity Threats, Gais Security CEO Highlights Organizational Gaps

2024: A Year of Rising Cybersecurity Threats, Gais Secu...

bastama Feb 27, 2025  0  4

Two new malware that threatened Mac users emerged

Two new malware that threatened Mac users emerged

bastama Mar 10, 2025  0  3

Critical Vulnerability Found in AnyDesk: Attackers Can Gain Admin Privileges

Critical Vulnerability Found in AnyDesk: Attackers Can ...

bastama Feb 27, 2025  0  4