VulnHub

Real-time Cybersecurity News

Nissan Americas Hit in Global Oracle PeopleSoft Data Breach

Cyber Defense Magazine
Actively Exploited
CVEZero-dayExploitVulnerabilityData BreachOracle

Overview

Nissan Americas has been impacted by a significant data breach linked to a zero-day vulnerability in Oracle’s PeopleSoft software, identified as CVE-2026-35273. This vulnerability has led to a series of attacks, with researchers connecting it to a group known as UNC6240, which is believed to be exploiting the weakness. The breach raises serious concerns about the security of sensitive employee information and operational data within Nissan Americas and potentially other organizations using the same software. As attackers continue to exploit this vulnerability, affected companies must act quickly to secure their systems and protect their data from further unauthorized access.

Key Takeaways

  • Active Exploitation: This vulnerability is being actively exploited by attackers. Immediate action is recommended.
  • Affected Systems: Oracle PeopleSoft software used by Nissan Americas and potentially other organizations utilizing the same system.
  • Action Required: Organizations using Oracle PeopleSoft should immediately apply any available security patches from Oracle, conduct a thorough review of their systems, and enhance monitoring for unusual activity.
  • Timeline: Newly disclosed

Original Article Summary

The Vulnerability Hackers found a serious zero-day vulnerability in Oracle’s software, which is being listed as CVE-2026-35273, sparking entire waves of attacks. Security researchers have also linked UNC6240 to infrastructure... The post Nissan Americas Hit in Global Oracle PeopleSoft Data Breach appeared first on Cyber Defense Magazine.

Impact

Oracle PeopleSoft software used by Nissan Americas and potentially other organizations utilizing the same system.

Exploitation Status

This vulnerability is confirmed to be actively exploited by attackers in real-world attacks. Organizations should prioritize patching or implementing workarounds immediately.

Timeline

Newly disclosed

Remediation

Organizations using Oracle PeopleSoft should immediately apply any available security patches from Oracle, conduct a thorough review of their systems, and enhance monitoring for unusual activity. Regular updates and security assessments should also be implemented to mitigate risks from similar vulnerabilities.

Additional Information

This threat intelligence is aggregated from trusted cybersecurity sources. For the most up-to-date information, technical details, and official vendor guidance, please refer to the original article linked below.

Related Topics: This incident relates to CVE, Zero-day, Exploit, and 3 more.

Read Original Article

Related Coverage

Oracle EBS exploitation similar to Clop's MOVEit, GoAnywhere attacks

SCM feed for Latest

The Clop ransomware group has shifted its focus from exploiting file transfer tools to targeting legacy business systems like Oracle EBS. This change signifies an evolution in their attack strategy, posing a significant threat to organizations using these systems due to potential data breaches and operational disruptions.

Dec 1, 2025

Dartmouth College Confirms Data Theft in Oracle Hack

SecurityWeek

Dartmouth College has confirmed a significant data breach involving the theft of over 226 Gb of files by cybercriminals. This incident highlights the increasing risks associated with data security in educational institutions and raises concerns about the potential exposure of sensitive information.

Nov 26, 2025

Canon Says Subsidiary Impacted by Oracle EBS Hack

SecurityWeek

Canon has reported that one of its subsidiaries has been affected by the Oracle EBS hack, which has resulted in over 100 alleged victims being listed on the Cl0p ransomware website. This incident highlights the significant impact of the Oracle EBS campaign and raises concerns about the security of affected organizations.

Nov 25, 2025

Critical Flaw in Oracle Identity Manager Under Exploitation

darkreading

The article highlights the exploitation of CVE-2025-61757, which follows a breach of Oracle Cloud and an extortion campaign targeting Oracle E-Business Suite customers. This indicates a significant security threat that could impact numerous organizations relying on Oracle's services.

Nov 24, 2025

CISA Confirms Exploitation of Recent Oracle Identity Manager Vulnerability

SecurityWeek

CISA has confirmed the exploitation of a vulnerability in Oracle Identity Manager, identified as CVE-2025-61757, which has been added to its Known Exploited Vulnerabilities catalog. This indicates a significant security risk for organizations using the affected systems, necessitating immediate attention to mitigate potential breaches.

Nov 24, 2025

Mazda Says No Data Leakage or Operational Impact From Oracle Hack

SecurityWeek

Mazda has been identified as a victim of the Cl0p ransomware group's Oracle EBS campaign, but the company asserts that there has been no data leakage or operational impact from the incident. This situation highlights the ongoing threat posed by ransomware groups targeting enterprise systems.

Nov 24, 2025