ON
← Back to feed
Cybergang ShinyHunters attacks Oracle-PeopleSoft vulnerability
Germany💻 Technology15 days ago

Cybergang ShinyHunters attacks Oracle-PeopleSoft vulnerability

A critical vulnerability in Oracle PeopleSoft was disclosed last Thursday, which has been exploited by the cybercriminal group ShinyHunters. The U.S. cybersecurity agency CISA has added this vulnerability to its 'Known-Exploited Vulnerabilities' catalog. Oracle issued an out-of-cycle security advisory warning about the flaw, which affects Oracle PeopleSoft PeopleTools and possibly Oracle PeopleSoft Enterprise Applications. Attackers can exploit the vulnerability remotely without prior authentication using HTTP packets to inject and execute malicious code (CVE-2026-35273, CVSS 9.8, risk level '

Go to the primary sources (1)

The official sources this coverage is built on. Read them directly to bypass framing.

2 reports

heise online logoheise onlineIndependentCenterFactual 85Objective 7519 days ago
Cybergang ShinyHunters attacks Oracle-PeopleSoft vulnerability

A critical vulnerability in Oracle PeopleSoft was disclosed last Thursday, which has been exploited by the cybercriminal group ShinyHunters. The U.S. cybersecurity agency CISA has added this vulnerability to its 'Known-Exploited Vulnerabilities' catalog. Oracle issued an out-of-cycle security advisory warning about the flaw, which affects Oracle PeopleSoft PeopleTools and possibly Oracle PeopleSoft Enterprise Applications. Attackers can exploit the vulnerability remotely without prior authentication using HTTP packets to inject and execute malicious code (CVE-2026-35273, CVSS 9.8, risk level '

Bias read (Center): The article reports on a technical cybersecurity issue involving a software vulnerability and its exploitation by a known cybercriminal group. It provides factual information about the vulnerability, the affected systems, and the response from Oracle and CISA. There is no evident ideological framing

Why these scores (Factual 85 · Objective 75): This article accurately reports on CVE-2026-35273 related to Oracle PeopleSoft Enterprise PeopleTools, noting that it has been added to CISA's KEV catalog and is being exploited by the ShinyHunters group. However, it lacks specific technical details from the primary source such as the exact action r

heise online logoheise onlineIndependentCenterFactual 40Objective 5015 days ago
PTC Windchill: BSI calls admins at night about critical security flaw

Customers of PTC's Windchill PLM software have been contacted by the Federal Office for Information Security (BSI) regarding a critical security vulnerability. The BSI warned that imminent cyberattacks could exploit this flaw, allowing remote execution of malicious code. According to an anonymous tipster, BSI officials called PTC at night on June 17, urging immediate patching. A warning email from the BSI was also received, emphasizing the urgency of applying the latest security update.

Bias read (Center): The article reports on a technical cybersecurity issue involving a software vulnerability and official warnings from the BSI. There is no overt ideological framing, partisan language, or emphasis on political implications. The content remains focused on the technical details and actions taken by the

Why these scores (Factual 40 · Objective 50): The article discusses a security vulnerability in PTC Windchill software but provides no specific details matching the CVE identifiers listed in the primary source document. It references a fictional date (17. June 2026) and mentions a 'Zero-Day' exploit without citing any CVE number. The factual cl

Keep the news honest.

ObjectiveNews is reader-funded and ad-free — we show you the bias instead of hiding it. Support independent journalism for €5/month.

Become a Supporter

Related stories