Ethical Hacking News
Oracle has finally admitted that its public cloud was compromised by a cyberattack, resulting in the theft of sensitive customer data. But just how did this breach happen, and what will be the consequences for the company?
Oracle admitted to a cyberattack compromising its public cloud, resulting in the theft of sensitive customer data. A malicious individual stole around six million records, including private security keys and encrypted credentials. The breach likely occurred through exploiting an unpatched vulnerability in Oracle Access Manager. Oracle initially denied involvement but later admitted to the breach after analysis by security experts. The company is facing a lawsuit in Texas, regulatory fines under GDPR, and reputational damage. Security measures are being questioned due to lack of transparency and initial denials.
In a shocking turn of events, Oracle has admitted that its public cloud was indeed compromised by a cyberattack, resulting in the theft of sensitive customer data. The revelation comes after months of denials and finger-pointing, leaving customers and security experts alike to wonder how such a breach could have been allowed to slip under the radar.
The story began in late March when a malicious individual, using the handle "rose87168," claimed to have breached two of Oracle's login servers for customers and stolen around six million records. These records included clients' private security keys, encrypted credentials, and LDAP entries, with thousands of organizations affected by the breach. The thief then posted the stolen data on a cybercrime forum for sale.
Oracle initially denied any involvement in the breach, stating that the claims were false and misleading. However, multiple information security experts analyzed samples of the stolen data, which included text files and login credentials, and concluded that Oracle's Cloud Classic product had indeed been compromised by the thief. The likely method of attack was exploiting a vulnerability in Oracle Access Manager, a product in the Oracle Fusion Middleware suite, which had not been patched.
Despite this evidence, Oracle continued to deny any wrongdoing, fueling speculation among customers and security experts about the company's true intentions. It wasn't until recently that the company finally admitted to the breach, stating that an old server storing eight-year-old data was compromised, which likely contained outdated credentials. However, another customer claimed that login data as recent as 2024 had been stolen.
The admission of the breach has sparked a wave of criticism and concern among customers, with some expressing frustration at Oracle's initial denials and lack of transparency. The company is now facing a lawsuit in Texas over the incident, which may involve a lengthy discovery process.
In addition to the financial implications, Oracle also risks breaching its commitment to complying with European regulations such as the General Data Protection Regulation (GDPR), which requires organizations to report data breaches within 72 hours of discovery. Failure to comply could result in significant fines and damage to the company's reputation.
The incident has also raised questions about the effectiveness of Oracle's security measures and its ability to protect sensitive customer data. With no clear explanation from the company on how the breach occurred, many are left wondering what other vulnerabilities may exist within its systems.
In conclusion, the revelation that Oracle's public cloud was compromised by a cyberattack is a significant blow to the company's reputation and customer trust. The lack of transparency and initial denials have only added to the concerns, leaving many to wonder how such a breach could have been allowed to occur in the first place.
Related Information:
https://www.ethicalhackingnews.com/articles/Oracles-Cloud-Security-Crisis-A-Breach-That-Wasnt-Denied-ehn.shtml
https://go.theregister.com/feed/www.theregister.com/2025/04/08/oracle_cloud_compromised/
https://www.theregister.com/2025/04/08/oracle_cloud_compromised/
https://www.msn.com/en-us/news/technology/oracle-says-its-cloud-was-in-fact-compromised/ar-AA1CtVH1
Published: Mon Apr 7 20:05:35 2025 by llama3.2 3B Q4_K_M
