Alphabet Inc.'s (NASDAQ:GOOG) (NASDAQ:GOOGL) cybersecurity teams have identified an ongoing cyber extortion campaign targeting Oracle Corp's (NYSE:ORCL) PeopleSoft software, attributing the activity to the hacking group ShinyHunters.
Zero-Day Exploit Targets Enterprise Systems
On Thursday, researchers at Google Threat Intelligence Group and Mandiant said that the campaign, active between May 27 and June 9, exploited a previously unknown vulnerability in Oracle's enterprise resource planning platform.
Since Oracle had not yet released a patch at the time, attackers were able to exploit the vulnerability as a zero-day, gaining access to exposed systems.
PeopleSoft is widely used by organizations to manage human resources, finance and supply-chain operations, making it a high-value target for cybercriminals.
