ShinyHunters Exploited Oracle Zero-Day to Hit Over 100 Organizations, Mostly Universities

ShinyHunters exploited a zero-day in Oracle PeopleSoft, affecting 100+ organizations. University of Nottingham breach reported, 40 GB data stolen.

By Content Team

Jun 13, 2026

ON THIS PAGE

Share

---

ON THIS PAGE

Want more insights like this?

Subscribe to our newsletter to get the latest software protection strategies delivered to your inbox.

By submitting your email, you consent to Codekeeper contacting you and agree to our privacy policy.

The ShinyHunters extortion gang exploited a critical zero-day vulnerability in Oracle's PeopleSoft software between May 27 and June 9, 2026, compromising more than 300 instances across 100+ organizations. The flaw, CVE-2026-35273 (CVSS 9.8), allowed unauthenticated remote code execution through PeopleSoft's Environment Management Hub service.

About 68% of targeted organizations were higher education institutions. The University of Nottingham confirmed a breach, with ShinyHunters claiming 40 GB of student records stolen. Oracle patched the vulnerability on June 10 after researchers flagged it. Organizations are urged to disable or block external access to the EMHub service immediately.

Source: Dark Reading

Share this article

Have questions about protecting your software?

Our escrow experts are standing by to help.

Book a free demo

YOU MAY ALSO LIKE

Cyber Attack Forces Great Marlow School to Partially Close

Jun 11, 2026

Ericsson Data Breach Exposes 15,000 People's Personal Information

Mar 10, 2026

Cybercriminals Launch Lightning-Fast Ransomware Attacks in 24 Hours

Apr 8, 2026

State-Sponsored Hackers Increasingly Target Defense Workers Through Personal Attacks

Feb 11, 2026