Oracle Warns PeopleSoft Customers After Critical Zero-Day Exploited

Oracle issued emergency guidance for CVE-2026-35273, a critical PeopleSoft flaw exploited in a ShinyHunters-linked campaign ...
Morning Overview on MSN

A 9.8-rated Oracle flaw let hackers seize servers for two weeks before any patch existed

Organizations running Oracle WebLogic Server faced active attacks for roughly two weeks before any official fix arrived, ...

Oracle warns customers of critical PeopleSoft attack after hundreds of servers hacked by apparent ShinyHunters data theft attacks

High-severity CVSS 9.8 PeopleSoft vulnerability caused over 100 organizations to become victims, including universities.
CIO

Oracle’s first monthly patch release fixes 35 flaws, including 11 rated ‘critical’

Oracle has released the first security fixes in its new monthly Critical Security Patch Update (CSPU) cycle, designed to address urgent vulnerabilities that can’t wait for the company’s quarterly ...
SecurityWeek

Oracle’s First Monthly Patches Resolve 77 Vulnerabilities

Oracle has released its first monthly Critical Security Patch Update (CSPU) to resolve 77 vulnerabilities across its products ...
Dark Reading

Few Oracle Customers Have Official Database Patching Policies

Most organizations running Oracle databases don't require the application of the database vendor's Critical Patch Updates -- in fact, only 26 percent need them, according to a new report. "What I ...