ShinyHunters ransomware group exploits critical Oracle PeopleSoft vulnerability

Source:Ars Technica

02 — Who / Subject

ShinyHunters, Oracle, University of Nottingham

03 — Where / Locus

Global

04 — When / Temporality

2026-05-27

Verified: June 12, 2026

05 — Why / Core Summary

"Ransomware group ShinyHunters exploited a critical SSRF vulnerability (CVE-2026-35273) in Oracle PeopleSoft. Approximately 100 organizations targeted, with 68% in the higher education sector. University of Nottingham confirmed as a victim with significant data theft."

Conflict Analysis

A significant cybersecurity incinformationnt involving a major software suite and multiple institutional victims.

Recommended Background Resource

Affiliate / AdAI Curation

Sandworm: A New Era of Cyberwar and the Hunt for the Kremlin's Most Dangerous Hackers

Author: Andy Greenberg

This book provides a deep dive into the evolution of state-sponsored and criminal hacking groups, offering critical context on how sophisticated actors exploit vulnerabilities in enterprise software to conduct large-scale data exfiltration.

Explore Background Book (Amazon)

As an Amazon Associate, COMPAMIR earns from qualifying purchases.

Post