On Thursday evening, a hacker named rose87168 claimed to have compromised Oracle Cloud, stealing six million records which allegedly include sensitive data for 140,000 tenants. Despite these assertions, Oracle firmly denies any breach, maintaining that the credentials shared do not belong to their cloud services. Speculations suggest that vulnerabilities in Oracle's servers may have been exploited, particularly a critical flaw in Access Manager. While the attacker demanded a ransom in cryptocurrency, Oracle's refusal aligns with legal standards against negotiating with cybercriminals. Given evidence shared by the hacker, the situation raises concerns for organizations utilizing Oracle Cloud to reset credentials promptly.
The hacker rose87168 claims to have stolen six million records from Oracle Cloud, affecting 140,000 tenants, though Oracle denies any system compromise.
According to Oracle, the published credentials do not belong to Oracle Cloud, and they have refused to pay the alleged ransom to rose87168.
Collection
[
|
...
]