Breaking
ESMúltiples incendios forestales azotan España, con Cataluña y Andalucía en alerta máximaESPedro Sánchez busca aprobar los Presupuestos de 2027 como "escaparate electoral" ante la falta de apoyosESJuez sopesa imputar a dos empleadas del PSOE por la presunta trama de las cloacasESFIFA's Balogun Decision Sparks Controversy Ahead of US vs. Belgium MatchESMikel Merino clasifica a España a semifinales del Mundial 2026 con un gol agónico ante PortugalESBélgica golea a EE.UU. y se medirá a España en cuartos del MundialES¿Es la cumbre de Ankara la más importante de la historia reciente de la OTAN?ESSánchez planta cara a Trump en la OTAN por el gasto militarESCristiano Ronaldo's World Cup Dream Ends as Portugal is Eliminated by SpainESBélgica elimina a Estados Unidos en cuartos de final tras escándalo de Trump y la FIFAESMúltiples incendios forestales azotan España, con Cataluña y Andalucía en alerta máximaESPedro Sánchez busca aprobar los Presupuestos de 2027 como "escaparate electoral" ante la falta de apoyosESJuez sopesa imputar a dos empleadas del PSOE por la presunta trama de las cloacasESFIFA's Balogun Decision Sparks Controversy Ahead of US vs. Belgium MatchESMikel Merino clasifica a España a semifinales del Mundial 2026 con un gol agónico ante PortugalESBélgica golea a EE.UU. y se medirá a España en cuartos del MundialES¿Es la cumbre de Ankara la más importante de la historia reciente de la OTAN?ESSánchez planta cara a Trump en la OTAN por el gasto militarESCristiano Ronaldo's World Cup Dream Ends as Portugal is Eliminated by SpainESBélgica elimina a Estados Unidos en cuartos de final tras escándalo de Trump y la FIFA
Newsgather
BackShinyHunters Claims Hack of Oracle PeopleSoft Servers at Over 100 Organizations
ShinyHunters Claims Hack of Oracle PeopleSoft Servers at Over 100 Organizations
Developing
TechCrunch6/10/2026Tech1 min readUnited States

ShinyHunters Claims Hack of Oracle PeopleSoft Servers at Over 100 Organizations

Quick Look

  • Cybercrime group ShinyHunters claims to have hacked Oracle PeopleSoft servers at over 100 organizations, including many universities.
  • Data exfiltrated includes student, financial, and administrative information.
  • The group's initial goal was to target an FBI server.

AI-generated summary

Why It Matters

The cybercrime group ShinyHunters has claimed responsibility for hacking Oracle PeopleSoft servers at over 100 organizations, many of which are universities. PeopleSoft is enterprise software used for managing various business operations. This incident highlights the group's specialization in mass hacks by exploiting software vulnerabilities.

Font size

The notorious cybercrime group ShinyHunters claimed to have hacked Oracle PeopleSoft servers at more than 100 organizations, many of them universities, a ShinyHunters member told TechCrunch on Wednesday. The breaches were first reported by BleepingComputer.

PeopleSoft is enterprise software designed to manage payroll, human resources, administration, and other business operations.

The news shows that despite being one of the most visible and prolific cybercrime groups at the moment, ShinyHunters is not slowing down, and has turned mass hacks into its specialty. The group’s modus operandi is to find a vulnerability in a popular piece of software so that they can compromise many victims at once.

“Student, applicant, financial aid, immigration, health, and administrative data has been exfiltrated,” read a message that the hacker said was sent to one of the victims. The hackers claimed to have stolen student records that include home addresses, phone numbers, emails, and dates of birth.

The hacker added that most of the targeted schools had already been compromised in earlier, unrelated campaigns.

The group’s original goal, the member said, was to compromise an FBI PeopleSoft server — the goal being to post a statement denying ShinyHunters was behind a wave of swatting attempts the FBI flagged in an alert last month. The member said that attempt failed.

Oracle did not respond to a request for comment.

Open Questions

  • What specific vulnerability was exploited?
  • What is the full list of affected organizations?
  • What is the extent of the data compromised?
  • Will Oracle or affected organizations face legal repercussions?

Related Topics

This article was originally published by TechCrunch.

Related Stories

More on this topiccybercrime