A cyberattack launched by the ShinyHunters group has targeted over 100 global organizations, particularly in the higher education sector, utilizing a critical exploit in Oracle PeopleSoft (CVE-2026-35273) that allows remote code execution with a CVSS score of 9.8. Security experts uncovered extensive reconnaissance operations where attackers mapped internal network configurations and deployed malicious scripts, leading to significant data breaches.
The attackers used a staged environment to facilitate attacks, and the campaign resulted in the leak of sensitive data on the ShinyHunters Data Leak Site. To combat the threat, organizations are urged to disable vulnerable services, monitor traffic, and secure their systems against potential ransomware attacks.