Oracle PeopleSoft Zero-Day Exploited in 100+ Breaches: Council of Europe Deadline Falls Today
A critical zero-day vulnerability in Oracle PeopleSoft was exploited for 14 days before Oracle issued any advisory — and today, as the extortion group ShinyHunters sets its ransom deadline for the Council of Europe, any organization still running PeopleSoft PeopleTools versions 8.61 or 8.62 without
Brief summary
What this story is about
A critical zero-day vulnerability in Oracle PeopleSoft was exploited for 14 days before Oracle issued any advisory — and today, as the extortion group ShinyHunters sets its ransom deadline for the Council of Europe, any organization still running PeopleSoft PeopleTools versions 8.61 or 8.62 without
Why it matters
Reader takeaways
- Prioritize whether the item affects internet-facing systems, databases, middleware, or identity infrastructure.
- Map the source item to your next patch window and document owners before remediation starts.
- Keep the original advisory link because patch details can change after publication.
SEO context
Topic and keyword map
This brief is filed under Oracle security alerts and Critical Patch Update watch.
higher educationinternet securityOracle Critical Patch UpdateOracle security alertsOracle CVEDBA patchingsecurity advisories