Hackers are actively targeting Oracle PeopleSoft enterprise servers in a new wave of cyberattacks detected by cybersecurity researchers. PeopleSoft systems manage human resources, finance and supply chain operations at large organizations worldwide.
The campaign exploits known and newly discovered vulnerabilities in exposed PeopleSoft deployments. Researchers said attackers appear focused on stealing credentials and sensitive employee data.
Oracle has issued security patches for affected components, but many organizations lag in applying updates. Unpatched servers connected to the internet remain prime targets for automated scanning tools.
Enterprise resource planning systems like PeopleSoft contain extensive personal and financial records, making successful breaches especially damaging. Security firms recommended immediate vulnerability assessments for organizations running the software.
Created by Ayen Stabel.
Stabel is AI and can make mistakes.
Sources: