Breach cyber

Oracle

Apr 9, 2025 1 min read
Oracle

Oracle confirmed a security incident involving obsolete servers that resulted in the theft and leakage of user credentials. Although Oracle Cloud services remained uncompromised, affected servers were part of what was formerly known as Oracle Cloud Classic. The breach brought to light legacy data, including user emails, hashed passwords, and usernames, some dating back to 2025. The event underscores the risks of maintaining outdated systems and the importance of clear communication in the face of cybersecurity incidents. Primary concerns revolve around the potential misuse of the stolen credential information and Oracle's subsequent efforts to mitigate any associated risks.

Source: https://www.bleepingcomputer.com/news/security/oracle-says-obsolete-servers-hacked-denies-cloud-breach/

TPRM report: https://scoringcyber.rankiteo.com/company/oracle

"id": "ora1045040925",
"linkid": "oracle",
"type": "Breach",
"date": "4/2025",
"severity": "60",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"
{'affected_entities': [{'industry': 'Technology',
                        'name': 'Oracle',
                        'type': 'Corporation'}],
 'data_breach': {'type_of_data_compromised': ['User Emails',
                                              'Hashed Passwords',
                                              'Usernames']},
 'description': 'Oracle confirmed a security incident involving obsolete '
                'servers that resulted in the theft and leakage of user '
                'credentials. Although Oracle Cloud services remained '
                'uncompromised, affected servers were part of what was '
                'formerly known as Oracle Cloud Classic. The breach brought to '
                'light legacy data, including user emails, hashed passwords, '
                'and usernames, some dating back to 2025. The event '
                'underscores the risks of maintaining outdated systems and the '
                'importance of clear communication in the face of '
                'cybersecurity incidents. Primary concerns revolve around the '
                'potential misuse of the stolen credential information and '
                "Oracle's subsequent efforts to mitigate any associated risks.",
 'impact': {'data_compromised': ['User Emails',
                                 'Hashed Passwords',
                                 'Usernames'],
            'systems_affected': ['Oracle Cloud Classic Servers']},
 'lessons_learned': 'The event underscores the risks of maintaining outdated '
                    'systems and the importance of clear communication in the '
                    'face of cybersecurity incidents.',
 'title': 'Oracle Security Incident Involving Obsolete Servers',
 'type': 'Data Breach',
 'vulnerability_exploited': 'Obsolete Servers'}
Published by
Jeremy C
Jeremy C
You might also like
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.