Over 900 Oracle E-Business Suite (EBS) instances have been found exposed online amid ongoing attacks exploiting a critical ...
Oracle is warning about a critical PeopleSoft Suite zero-day vulnerability tracked as CVE-2026-35273 that allows unauthenticated remote code execution, with the flaw actively exploited in ShinyHunter ...
Attackers can inject indirect prompts in normal-looking repositories to trick Claude Code into spawning a reverse shell.
For the second time in as many months, the higher-education sector is assessing the damage from a cyber attack by the data extortion group ShinyHunters against a major software vendor. According to a ...
An "agentic threat actor" successfully exploited a Langflow flaw to steal data from a production database server and encrypt ...
Threat actors have started exploiting CVE-2026-46817, a critical-severity vulnerability in Oracle E-Business Suite’s Payments ...
ShinyHunters likely behind the CVE-2026-35273 attack on Oracle's PeopleSoft Versions 8.61 and 8.62 affected, users urged to take "immediate action" Google's Mandiant informed over 100 organizations ...
The flaw, tracked as CVE-2026-35273, is a critical remote code execution bug that attackers exploited as a zero-day. The ...
ShinyHunters used a zero-day vulnerability in Oracle's PeopleSoft software suite to steal data from potentially more than 100 organizations. PeopleSoft is an enterprise resource planning (ERP) ...
June 11 (Reuters) - Alphabet's (GOOGL.O), opens new tab cybersecurity unit Mandiant and Google Threat Intelligence Group said Thursday they had identified an active compromise and extortion campaign ...
Security researchers have found a way to hijack AI coding agents with nothing but a fake bug report. They call it Agentjacking. It needs no malware, no stolen password, and no breach of the target.