- More reports claim that another violation of Oracle data has taken place
- User Login -AdIrimation information was apparently stolen
- Oracle allegedly told some customers that the data is almost a decade old
Oracle has apparently suffered its second cyberattack in a month, but the company neglects its importance.
ONE Bloomberg Report, quoting two people familiar with the case, has claimed that Oracle told some of his clients that a threat actor compromised his IT infrastructure and stole the client’s login credentials.
At the same time, Pakinomist reports that an unidentified threat actor tried to sell the stolen data on the dark web and claimed to have stolen them from Oracle’s Austin, Texas premises.
Old data
Bloomberg Also reported that Oracle told some of its clients that the FBI was notified and that Crowdstrike was brought in to investigate. Furthermore, the clients were informed that this is not the same incident that hit healthcare customers in March 2025. Finally, the striker also tried to extort Oracle to the stolen data.
Oracle has suggested that the data is not so relevant, but claims that the compromised system was not used for eight years. Therefore, the conclusion is that the data found are outdated and pose a small risk.
However, there were Oracle Customer Login Legitimation information from as late as 2024.
We will say that leaked login data is always a problem, whether it is ten years or ten days old. Furthermore, many organizations never change their login credentials or reuse the same passwords across a myriad of other services, in which case such a database can prove a gold mine for brute-force or identification tasks.
At the time of the press, Oracle has not yet dealt with the media reports, but we have contacted the company for comment.
