The article outlines the growing evidence regarding the hack of Oracle, led by confirmation from Hudson Rock's CTO, Alon Gal. He has validated customer data obtained from an attacker, affirming its authenticity. Oracle's previous claims of no breach are contradicted by existing sensitive information in their cloud environment, which raises serious concerns for users. Moreover, the attack leveraged vulnerabilities already reported by CloudSEK, adding weight to the issue. Gal urges Oracle to address the situation and advises users to review and secure their credentials.
The confirmation that the data provides access to production environments with sensitive data makes the situation worrying. Hudson Rock's new findings seem to refute Oracle's denial.
CTO Alon Gal of Hudson Rock confirmed multiple records from the attacker and is validating information by reaching out to customers to check the authenticity of user accounts.
CloudSEK had already confirmed that Oracle had indeed been hacked despite denials from the company itself. Their investigation revealed that key login domains had been compromised.
Gal is calling on Oracle to provide more information or repair the situation, advising organizations using Oracle Cloud to check and renew their credentials as necessary.
Collection
[
|
...
]