Attackers can inject indirect prompts in normal-looking repositories to trick Claude Code into spawning a reverse shell.
Oracle is warning about a critical PeopleSoft Suite zero-day vulnerability tracked as CVE-2026-35273 that allows unauthenticated remote code execution, with the flaw actively exploited in ShinyHunter ...
Oracle PeopleSoft servers are being targeted in ongoing data theft attacks by the ShinyHunters extortion gang, which claims to have stolen data from over 100 organizations. PeopleSoft is an enterprise ...
For the second time in as many months, the higher-education sector is assessing the damage from a cyber attack by the data extortion group ShinyHunters against a major software vendor. According to a ...
An "agentic threat actor" successfully exploited a Langflow flaw to steal data from a production database server and encrypt ...
NAIC has confirmed it was targeted in the recent hacking campaign that exploited an Oracle PeopleSoft zero-day vulnerability.
ShinyHunters likely behind the CVE-2026-35273 attack on Oracle's PeopleSoft Versions 8.61 and 8.62 affected, users urged to take "immediate action" Google's Mandiant informed over 100 organizations ...
Researchers have revealed what they claim to be a “new class of attack” which tricks AI coding agents into executing arbitrary code on developer machines. Tenet Security, which specializes in the ...
The flaw, tracked as CVE-2026-35273, is a critical remote code execution bug that attackers exploited as a zero-day. The ...
ShinyHunters used a zero-day vulnerability in Oracle's PeopleSoft software suite to steal data from potentially more than 100 organizations. PeopleSoft is an enterprise resource planning (ERP) ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results