Security · 2h ago
NAIC Confirms ShinyHunters Stole Public Data in PeopleSoft Zero-Day Attack
The National Association of Insurance Commissioners confirmed that ShinyHunters stole only public data, outdated logs, and config files after exploiting an Oracle PeopleSoft zero-day. The breach exposed no sensitive consumer or regulatory information. NAIC is working with law enforcement and Oracle on remediation.
Meridian48 take
While the data loss appears minimal, the incident underscores the persistent risk of unpatched enterprise software in critical regulatory bodies.
Read the full reporting
NAIC says public data stolen in ShinyHunters' PeopleSoft breach →
Bleeping Computer
data-breachoracle-peoplesoft