UpTrajectory Review
A serious vulnerability in Oracle's PeopleSoft software has been exploited by the ransomware group ShinyHunters, targeting around 100 businesses. This flaw, tracked as CVE-2026-35273, has a critical severity rating of 9.8 out of 10, indicating its potential for significant damage. Oracle has acknowledged the issue and provided a temporary mitigation, but a full patch is still pending.
For small business operators using PeopleSoft, this vulnerability is a pressing concern. The fact that attackers have already begun extorting victims highlights the urgency of addressing this flaw. Businesses should prioritize updating their systems and implementing security measures to protect against potential data breaches. Additionally, staying informed about Oracle's patch timeline will be crucial in mitigating risks associated with this vulnerability.
“Google has confirmed that victims are receiving extortion demands.” — Ars Technica
Takeaway: Small businesses using PeopleSoft must act quickly to secure their systems against this critical vulnerability.
From the original item — Ars Technica:
One of the world’s most active ransomware groups exploited a critical vulnerability in Oracle’s PeopleSoft software suite and used it to target about 100 customers and extort at least one of them to pay up in exchange for not leaking stolen data, researchers said.
The group, tracked as ShinyHunters, had been exploiting the PeopleSoft vulnerability for more than two weeks before Oracle flagged it. CVE-2026-35273, as the vulnerability is tracked, carries a severity rating of 9.8 out of 10, making the former zero-day one of the year’s most critical vulnerabilities to be exploited.
Google’s Mandiant security team said it’s an SSRF (server-side request forgery), a vulnerability that allows attackers to send requests from a susceptible server to systems used by the targeted organization. Oracle said the SSRF is remotely exploitable, and the company has issued a stopgap mitigation but has yet to fully patch the flaw. Google has confirmed that victims are receiving extortion demands.