The Bloomberg news agency, citing anonymous sources, reported that Oracle is notifying customers of a server hack. The hacker using the account name rose87168 announced the sale of data from a 6 million entry LDAP database. Oracle has informed customers that they are involving the FBI and CrowdStrike to investigate the incident. BleepingComputer obtained a sample file from the hacker, revealing account names, emails, real names, and other personal identifying information including hashed passwords. The hacker left evidence on the server on March 1, confirming the server was indeed compromised.
Source: Reuters, BleepingComputer
The file image that rose87168 placed on the Oracle server on March 1 can be found on archive.org.
TLDR: Oracle notifies customers of a server hack by hacker rose87168 selling data from a 6 million entry LDAP database. FBI and CrowdStrike involved in investigating the incident.
Leave a Comment