Ethical Hacking News
Oracle has confirmed that two of its "obsolete servers" were hacked, but denies that an Oracle Cloud breach occurred. The company claims no customer data was compromised, but leaked 6 million records on BreachForums. Experts say this may not be entirely true and that Oracle's response is suspicious.
Oracle allegedly suffered a security breach resulting in the theft of 6 million data records from two obsolete servers not part of Oracle Cloud Infrastructure (OCI). The breach, initially denied by Oracle, has raised concerns about the company's commitment to security and transparency. According to Oracle, no OCI customer environment was penetrated, no customer data was stolen or viewed, and no OCI service was interrupted or compromised. Cybersecurity experts believe that Oracle's denial of an OCI breach was misleading or a deliberate attempt to downplay the severity of the incident. The identity of the threat actor remains unknown, but they have been extorting breached hospitals for millions in cryptocurrency.
Oracle, one of the world's leading cloud computing services providers, has recently found itself entangled in a web of controversy surrounding an alleged security breach. The incident, which surfaced in March, saw a threat actor allegedly steal 6 million data records from what was described as "two obsolete servers" that were not part of Oracle Cloud Infrastructure (OCI).
The breach, which was initially denied by Oracle, left many questioning the company's commitment to security and transparency. However, in a recent email notification sent to customers, Oracle provided more information on the incident. According to Oracle, no OCI customer environment has been penetrated, no OCI customer data has been viewed or stolen, and no OCI service has been interrupted or compromised in any way.
The email statement further explained that a hacker did access and publish user names from two obsolete servers that were never a part of OCI. The passwords on these servers were either encrypted and/or hashed, rendering the hacker unable to access any customer environments or customer data.
Cybersecurity experts have weighed in on the matter, with Kevin Beaumont stating that "Oracle rebadged old Oracle Cloud services to be Oracle Classic. Oracle Classic has the security incident." This statement suggests that Oracle's denial of an OCI breach was, at best, misleading and, at worst, a deliberate attempt to downplay the severity of the incident.
The identity of the threat actor behind the breach remains unknown, with sources only identifying them as "Andrew". The individual, who has yet to claim affiliation with an extortion or ransomware operation, has been extorting breached hospitals, demanding millions of dollars in cryptocurrency not to sell or leak the stolen data.
This incident is a stark reminder of the importance of cybersecurity and transparency. As one of the world's leading cloud computing services providers, Oracle has a responsibility to its customers to ensure their data is secure. The fact that the breach was allegedly perpetrated on "obsolete servers" does little to alleviate concerns about the company's commitment to security.
In recent years, there have been numerous high-profile breaches and data leaks involving major corporations and government agencies. These incidents often serve as a wake-up call for companies to review their cybersecurity protocols and ensure they are taking adequate measures to protect customer data.
The incident surrounding Oracle's "obsolete servers" serves as a reminder that no company is immune to the threat of cyber attacks. As such, it is essential for organizations like Oracle to be proactive in addressing these threats and ensuring the security of their customers' data.
The full extent of the breach and its impact on affected individuals remains unknown at this time. As more information becomes available, it will likely shed light on the severity of the incident and the measures being taken by Oracle to prevent similar breaches in the future.
In conclusion, the recent incident involving Oracle's "obsolete servers" serves as a stark reminder of the importance of cybersecurity and transparency. The breach highlights the need for companies to be proactive in addressing cyber threats and ensuring the security of their customers' data.
Related Information:
https://www.ethicalhackingnews.com/articles/Oracles-Cloudy-Reputation-A-Tale-of-Obsolete-Servers-and-Leaked-Credentials-ehn.shtml
https://www.bleepingcomputer.com/news/security/oracle-says-obsolete-servers-hacked-denies-cloud-breach/
Published: Wed Apr 9 15:03:42 2025 by llama3.2 3B Q4_K_M
