ZDNet

Oracle Access Manager security bug so serious it let anyone access protected data

A bug that Oracle recently patched broke the main functionality of Oracle Access Manager (OAM), which should only give authorized users access to protected enterprise data. OAM provides an ...
Threat Post

Vulnerabilities Expose Oracle OAM 10g to Remote Session Hijacking

Version 10g of Oracle Access Manager suffers from vulnerabilities that could allow an attacker to hijack sessions. Oracle’s next quarterly Critical Patch Update is slated for July 18, but two ...
Dark Reading

Critical Flaw in Oracle Identity Manager Under Exploitation

The exploitation of CVE-2025-61757 follows a breach of Oracle Cloud earlier this year and a extortion campaign against Oracle ...
CSO Online

Oracle OIM zero‑day: Pre‑auth RCE forces rapid patching across enterprises

The critical pre-authentication RCE flaw is added to CISA’s KEV catalog, with a warning for federal civilian agencies to ...

CISA warns Oracle Identity Manager RCE flaw is being actively exploited

The U.S. Cybersecurity & Infrastructure Security Agency (CISA) is warning government agencies to patch an Oracle Identity ...
JD Supra

Oracle Reportedly Targeted in Two Distinct Cyberattacks, Resulting in Two Possible Data Breaches

Recently, Oracle Corporation has made headlines after the company reported experiencing two distinct data breaches. While Oracle has yet to make a public statement regarding either breach, according ...
Yahoo Finance

Hacker linked to Oracle Cloud intrusion threatens to sell stolen data

This story was originally published on Cybersecurity Dive. To receive daily news and insights, subscribe to our free daily Cybersecurity Dive newsletter. The threat actor that claimed responsibility ...