答案已發布19 來源
ShinyHunters 大規模利用 Oracle PeopleSoft 零日漏洞,逾百機構遭入侵
Google 威脅情報小組確認,ShinyHunters 勒索組織利用一個漏洞評分達 9.8 嘅未修補零日漏洞(CVE 2026 35273),入侵咗超過 100 間機構、約 300 個 Oracle PeopleSoft 系統執行個體 [1][4][5]。 68% 嘅受害者嚟自高等教育界;諾定咸大學係首個公開確認嘅受害者,被偷走近 50 萬名學生嘅個人及學術記錄 [4][5][7]。
11K0
AI 提示
openai.comCreate a landscape editorial hero image for this Studio Global article: What did Google confirm about the ShinyHunters hacking group's exploitation of an Oracle PeopleSoft zero-day vulnerability, including detail. Article summary: Here is what Google's Mandiant and Threat Intelligence Group (GTIG) confirmed about the ShinyHunters campaign targeting Oracle PeopleSoft:. Topic tags: general, general web. Reference image context from search candidates: Reference image 1: visual subject "# Google Confirms Data Breach Linked to ShinyHunters. ## In this blog series we spotlight one of the stories from our cybersecurity newsletter, Beacon. Google has confirmed that in" source context "Google Confirms Data Breach Linked to ShinyHunters" Reference image 2: visual subject "# Google Confirms Data Breach Linked to ShinyHunters. ## In this blog series we spotlight one of the stories from our cybersecu
Google 旗下嘅 Mandiant 同威脅情報小組(GTIG)喺一份聯合報告中確認,以勒索錢財為目的嘅黑客組織 ShinyHunters(代號 UNC6240)發動咗一場為期兩星期嘅大規模入侵行動。佢哋利用咗 Oracle PeopleSoft 軟件中一個嚴重嘅零日漏洞(Zero-day),喺唔需要任何登入驗證嘅情況下遙距執行惡意代碼,偷走大量數據。呢次攻擊主要針對教育機構,而且成個行動都發生喺 Oracle 公佈安全警告之前,意味住受害機構喺黑客入侵期間完全冇官方修補程式可用 。
漏洞細節:CVE-2026-35273
呢個被編號為 CVE-2026-35273 嘅漏洞,存在喺 Oracle PeopleSoft PeopleTools 嘅「環境管理中心」(Environment Management)組件入面。佢嘅 CVSS 風險評分高達 9.8(最高為 10),屬於嚴重級別 。簡單啲講,黑客可以透過 HTTP/HTTPS 協議,喺完全唔需要密碼或者用戶互動嘅情況下,只要能夠連接到目標伺服器,就可以遙距執行任意代碼(RCE)
。
Studio Global AI
Search, cite, and publish your own answer
Use this topic as a starting point for a fresh source-backed answer, then compare citations before you share it.
人們還問
「ShinyHunters 大規模利用 Oracle PeopleSoft 零日漏洞,逾百機構遭入侵」的簡短答案是什麼?
Google 威脅情報小組確認,ShinyHunters 勒索組織利用一個漏洞評分達 9.8 嘅未修補零日漏洞(CVE 2026 35273),入侵咗超過 100 間機構、約 300 個 Oracle PeopleSoft 系統執行個體 [1][4][5]。
首先要驗證的關鍵點是什麼?
Google 威脅情報小組確認,ShinyHunters 勒索組織利用一個漏洞評分達 9.8 嘅未修補零日漏洞(CVE 2026 35273),入侵咗超過 100 間機構、約 300 個 Oracle PeopleSoft 系統執行個體 [1][4][5]。 68% 嘅受害者嚟自高等教育界;諾定咸大學係首個公開確認嘅受害者,被偷走近 50 萬名學生嘅個人及學術記錄 [4][5][7]。
接下來在實務上我該做什麼?
Oracle 未出完整修補程式前,機構可採取應急措施,包括停用或移除 PSEMHUB 應用程式、喺邊界防火牆封鎖相關端點、以及檢查存取日誌尋找入侵跡象 [2][4]。
來源
- tech.yahoo.comGoogle says ShinyHunters hackers targeting education sector via Oracle exploit
- cloud.google.comShinyHunters Targets Education Sector with Oracle PeopleSoft Exploit
- bleepingcomputer.comOracle mitigates PeopleSoft zero-day exploited in data theft attacks
- rescana.comOracle PeopleSoft PeopleTools Zero-Day (CVE-2026-35273 ...
- mallory.aiShinyHunters Targets Oracle PeopleSoft Servers in Mass Data Theft ...
Loading comments...
Comments
0 comments