Google warns that ShinyHunters group is exploiting Oracle flaw to target education sector
Google said in a blog that the campaign primarily took place between May 27 and June 3
Google Threat Intelligence Group reportedly announced on Thursday that it had identified an extortion campaign targeting Oracle’s enterprise software. The company explicitly attributed the attack to the hacking group ShinyHunters.
Google clarified that it has already notified more than 100 organizations whose IP addresses were linked to potentially exposed endpoints.
It has been observed that most of the IP addresses were based in the US, and 68% belonged to the higher edition center.
According to researchers, the attackers hosted customized MeshCentral agents' disguised as legitimate endpoints which were then used to run administrative queries.
The hackers took full advantage of a “zero-day” flaw, which implies that there was no patch available at the time of the attack. It is worth mentioning that this malicious activity occurred before Oracle issued a major security advisory on June 10.
Earlier ShinyHunters attack also shows weaponization of education continuity, holding the academic progress of millions hostage.
Mandiant and GTIG being the two core pillars of Google Threat Intelligence said: “The attacker staging environments hosted customized MeshCentral agents masquerading as legitimate cloud endpoints, which they used to run administrative command queries and deploy a custom lateral movement and defacement script.”
It further resulted in a data breach, and thousands of students have been unable to access their major education materials.
ShinyHunters is a hacking group with a history of targeting prominent companies. Most importantly, the group attempted to strike a deal with Instructure, after stealing teacher and student data.
-
Microsoft launches $2.5 billion 'Frontier Company' to accelerate enterprise AI adoption
-
Apple Hide My Email Bug Exposes Users' Real Email Addresses
-
US House committee accuses South Korea of discriminating against Coupang
-
X offers $1m to creators with new live studio launch
-
Google suffers major defeat as EU court upholds €4.1 billion antitrust fine
-
Amazon building more devices with in-house AI chips, says executive
-
OpenAI seeks to hand Trump administration a 5% stake under new proposal: Here’s why
-
Portugal debuts first open-source AI model as Europe pushes for tech sovereignty
