A critical vulnerability in Oracle's PeopleSoft software, tracked as CVE-2026-35273, has been exploited by the ransomware group ShinyHunters, affecting around 100 organizations, primarily in the higher education sector. The attackers have extorted at least one victim for data they stole, which included significant amounts of sensitive information, while Oracle has issued a temporary mitigation but not yet a full patch for the flaw.
The critical insight for you, as a cybersecurity professional, is the active exploitation of a zero-day vulnerability in Oracle’s PeopleSoft software by the ransomware group ShinyHunters. With a severity rating of 9.8, this SSRF vulnerability has led to significant data breaches, particularly affecting the higher education sector. Immediate action is recommended for PeopleSoft users, including applying Oracle's stopgap mitigation and utilizing threat intelligence provided by Mandiant and Rapid7 to detect and respond to potential compromises.