On Monday, the US Cybersecurity and Infrastructure Security Agency (CISA) updated its Known Exploited Vulnerability Catalog to include a critical flaw that affects Oracle Fusion Middleware systems. …
Critical Vulnerability in Oracle Cloud Infrastructure Allowed Unauthorized Access
A new vulnerability has been disclosed in the Oracle Cloud Infrastructure. According to security researchers at Wiz, the flaw could allow unauthorized access to cloud storage volumes of all users. …
A Post-exploitation Look at Coinminers Abusing WebLogic Vulnerabilities
We have recently observed malicious actors exploiting both recently disclosed and older Oracle WebLogic Server vulnerabilities to deliver cryptocurrency-mining malware. Oracle WebLogic Server is …
Continue Reading about A Post-exploitation Look at Coinminers Abusing WebLogic Vulnerabilities
Oracle to buy medical records company Cerner in its biggest acquisition ever
Enterprise software giant Oracle will buy electronic medical records company Cerner in an all-cash deal for $95 per share, or approximately $28.3 billion in equity value. The deal, expected to close …
Continue Reading about Oracle to buy medical records company Cerner in its biggest acquisition ever
Oracle Releases Another Mammoth Security Patch Update
Oracle released a massive critical patch update earlier this week consisting of 402 patches for vulnerabilities across 29 product sets. This marks the second quarter this year that Oracle's critical …
Continue Reading about Oracle Releases Another Mammoth Security Patch Update
TikTok Parent ByteDance Seeks Chinese Approval For U.S. Deal With Oracle, Walmart
After President Trump signed an executive order banning the download or update of Chinese-based social media platform TikTok, its parent company ByteDance entered into a contract with US giants Oracle …
Unpatched Bugs in Oracle iPlanet Open Door to Info-Disclosure, Injection
Two bugs, CVE-2020-9315 and CVE-2020-9314, found in Oracle's iPlanet Web Server have been disclosed, both potentially allowing for sensitive data exposure and images onto web pages if exploited. Both …
Continue Reading about Unpatched Bugs in Oracle iPlanet Open Door to Info-Disclosure, Injection
Oracle: Unpatched Versions of WebLogic App Server Under Active Attack
Oracle has stated that although it patched the CVE-2020-2883 vulnerability in its April 2020 Critical Patch Update, a proof of concept exploit was published soon after. The company is now advising …
Continue Reading about Oracle: Unpatched Versions of WebLogic App Server Under Active Attack
Thousands of Enterprises At Risk Due to Oracle EBS Critical Flaws
Oracle patched vulnerabilities that allow potential attackers to access a company's entire enterprise resource planning solution, but research reports that 50% of over 21,000 organizations that use …
Continue Reading about Thousands of Enterprises At Risk Due to Oracle EBS Critical Flaws
These Companies Are Pitching AI to the U.S. Military
"While Silicon Valley workers continue to protest their employers selling artificial intelligence products to the U.S. military, the U.S. military is still looking to spend money on AI. The Army …
Continue Reading about These Companies Are Pitching AI to the U.S. Military