Oracle Corporation has recently disclosed a second cybersecurity breach within a month, involving unauthorized access to a legacy system and the theft of client login credentials. This incident follows a prior breach affecting healthcare clients, underscoring ongoing security challenges for the tech giant.
In early April 2025, Oracle informed certain customers that a hacker had infiltrated an outdated computer system, accessing usernames, passkeys, and encrypted passwords. Notably, some of the compromised credentials date back to 2024, raising concerns about potential security risks for affected users. The company described the breached system as a “legacy environment” that had been inactive for approximately eight years, suggesting that the stolen data poses minimal risk due to its age and the system’s obsolescence.
Oracle has reported that the Federal Bureau of Investigation (FBI) and cybersecurity firm CrowdStrike are conducting a thorough investigation into the breach. The hacker reportedly attempted to extort the company by seeking a ransom in exchange for the stolen data. Oracle has assured clients that this incident is separate from the previous breach disclosed in March, which targeted healthcare customers and involved patient data.
Despite Oracle’s assurances regarding the limited risk associated with the stolen credentials, cybersecurity experts advise clients to remain vigilant. Even outdated login information can be exploited, particularly if users have reused passwords across multiple platforms. Organizations are encouraged to implement robust security measures, including regular password updates and multi-factor authentication, to mitigate potential threats stemming from such breaches.
Related Posts:
- Outdated and Unblocked: Legacy Driver Vulnerability Exploited in Widespread Attack
- Hackers target Oracle WebLogic Servers after the release of PoC code
- BreachForums Claims: Millions of Oracle Cloud Records Stolen
- Oracle’s January 2025 Critical Patch Update: Addressing 320 Security Vulnerabilities
- CISA Sounds the Alarm on Actively Exploited Apple and Oracle Zero-Days
