>
Mar 22, 2025
A company called CloudSEK recently discovered a big cyberattack on Oracle Cloud. This attack happened because of a weakness in Oracle's system that the bad guys were able to exploit. They stole a lot of sensitive information, including passwords and encryption keys, which they are now selling on the dark web.
The bad guys, who go by the name "rose87168," claim to have gotten into Oracle's system by exploiting a vulnerability in an older version of Oracle Fusion Middleware. This vulnerability, known as CVE-2021-35587, allows attackers to get into Oracle Access Manager without a password. The affected versions of Oracle Fusion Middleware are:
In simple terms, the bad guys found a way to get into Oracle's system because it was not properly updated. They were able to steal a lot of important information, including passwords and encryption keys. This means that the people who use Oracle Cloud might be at risk of having their information stolen.
To determine if your current running version of Oracle Cloud is vulnerable, follow these steps:
CloudSEK recommends taking the following steps to protect yourself and your data:
Oracle has denied that there was a breach of their cloud infrastructure, but CloudSEK stands by their findings. Either way, it's essential to take steps to protect yourself and your data. By following the steps above, you can help keep your information safe and prevent any potential problems.