Google warns that ShinyHunters group is exploiting Oracle flaw to target education sector
Google said in a blog that the campaign primarily took place between May 27 and June 3
Google Threat Intelligence Group reportedly announced on Thursday that it had identified an extortion campaign targeting Oracle’s enterprise software. The company explicitly attributed the attack to the hacking group ShinyHunters.
Google clarified that it has already notified more than 100 organizations whose IP addresses were linked to potentially exposed endpoints.
It has been observed that most of the IP addresses were based in the US, and 68% belonged to the higher edition center.
According to researchers, the attackers hosted customized MeshCentral agents' disguised as legitimate endpoints which were then used to run administrative queries.
The hackers took full advantage of a “zero-day” flaw, which implies that there was no patch available at the time of the attack. It is worth mentioning that this malicious activity occurred before Oracle issued a major security advisory on June 10.
Earlier ShinyHunters attack also shows weaponization of education continuity, holding the academic progress of millions hostage.
Mandiant and GTIG being the two core pillars of Google Threat Intelligence said: “The attacker staging environments hosted customized MeshCentral agents masquerading as legitimate cloud endpoints, which they used to run administrative command queries and deploy a custom lateral movement and defacement script.”
It further resulted in a data breach, and thousands of students have been unable to access their major education materials.
ShinyHunters is a hacking group with a history of targeting prominent companies. Most importantly, the group attempted to strike a deal with Instructure, after stealing teacher and student data.
-
Big tech, AI data centers driving US power bills to record high
-
China's DeepSeek developing AI chip to cut reliance on Nvidia: Report
-
Beijing wants to curb overseas access to China's leading AI models: Here's why
-
Anthropic study reveals the hidden 'mind' of Claude AI
-
Can Australia's under-16 social media ban really work? Study raises doubts over age checks
-
US states demand $1.4 trillion in penalties from Meta ahead of youth safety trial
-
Why the US cyber agency is using Anthropic’s Mythos to audit government code
-
US Supreme Court declines to block app store age-verification law
