Nissan employee data exposed in Oracle zero-day breach
Automaker warns current and former staff after attackers exploited PeopleSoft flaw previously linked to ShinyHunters extortion group.
Nissan has disclosed a data breach affecting employee records after threat actors exploited a vulnerability in Oracle's PeopleSoft platform. The company is notifying current and former employees whose personal information was accessed during the incident.
The breach stems from exploitation of an Oracle PeopleSoft zero-day vulnerability that has been linked to attacks attributed to the ShinyHunters extortion group. ShinyHunters has previously claimed responsibility for high-profile data thefts targeting major corporations and cloud service providers. The group typically exfiltrates data and threatens public release unless ransom demands are met.
Oracle PeopleSoft is widely deployed across enterprise human resources and financial management systems, making it a high-value target for threat actors seeking employee records, payroll data, and corporate financial information. The vulnerability's zero-day status indicates it was exploited before Oracle released a patch, leaving organizations exposed during the window between discovery and remediation.
- 01Nissan employees face elevated identity theft and phishing risk from exposed personal data.
- 02Organizations using Oracle PeopleSoft must audit systems for compromise and apply emergency patches.
- 03ShinyHunters' targeting of enterprise HR systems signals continued focus on high-value employee databases.
Ransomware attack executed entirely by AI agent, researchers report
JadePuffer operation marks what may be the first documented case of a fully autonomous LLM-driven ransomware deployment from reconnaissance to encryption.
Agentic AI Executes Multi-Stage Ransomware Attack via Langflow
Demonstration shows large language model agents autonomously combining exploitation techniques with real-time reasoning to conduct complex intrusions without human intervention.
FortiBleed Attackers Monetize Firewall Access Through Ransomware Partnerships
Actors who compromised thousands of Fortinet devices are now collaborating with Inc and Lynx ransomware groups, adding Nextcloud exploitation to their toolkit.