Close Menu
  • Home
  • News
  • Cyber Security
  • Internet of Things
  • Tips and Advice

Subscribe to Updates

Get the latest creative news from FooBar about art, design and business.

What's Hot

Anthropic’s Fable 5 and Mythos 5 Are Back with New Security Guardrails

July 1, 2026

Miasma Malware Targets npm Packages and GitHub Actions in Supply Chain Attack

July 1, 2026

Veil#Drop Uses Google Blogspot to Deploy PureLog Stealer

July 1, 2026
Facebook X (Twitter) Instagram
Wednesday, July 1
Facebook X (Twitter) Instagram Pinterest Vimeo
Cyberwire Daily
  • Home
  • News
  • Cyber Security
  • Internet of Things
  • Tips and Advice
Cyberwire Daily
Home»News»Nissan Discloses Employee Data Breach Linked to Oracle Zero-Day
News

Nissan Discloses Employee Data Breach Linked to Oracle Zero-Day

Team-CWDBy Team-CWDJune 30, 2026No Comments2 Mins Read
Share Facebook Twitter Pinterest LinkedIn Tumblr Reddit Telegram Email
Share
Facebook Twitter LinkedIn Pinterest Email


Nissan has disclosed that current and former employees may have had sensitive personal data stolen, including Social Security numbers, banking details and tax records, after attackers exploited a zero-day flaw in Oracle’s PeopleSoft software.

The carmaker said in a breach notification published on June 26 that Oracle had warned it of a cyber event affecting hundreds of companies, and that Nissan was specifically targeted.

It believes the breach affected current and former staff in the US, Canada, Mexico and Brazil and exposed data, including national identification numbers and dependent or beneficiary information.

Caught in a Mass PeopleSoft Campaign

Nissan described the entry point only as an unknown vulnerability in Oracle PeopleSoft, the enterprise software it uses to run payroll and HR.

The flaw, tracked as CVE-2026-35273, is a critical remote code execution bug that attackers exploited as a zero-day. The wider campaign has been linked to the ShinyHunters extortion group, which claimed to have hit more than 100 organizations, mostly universities.

Oracle issued an out-of-band advisory and mitigations only after the attacks began. Nissan’s filing put the breach on May 27 and June 9, the window in which the campaign ran. Most named victims so far have been universities, making Nissan one of the larger corporate names caught in it.

Read more on ShinyHunters’ campaigns: ShinyHunters Targets Hundreds of Websites in New Salesforce Campaign

Sensitive Data and a Payroll Lockdown

Beyond Social Security and national identification numbers, Nissan said the exposed information could include contact and banking details, financial and tax data plus dependent or beneficiary records. The company said it had secured its systems, was working with Oracle and would offer affected staff free credit or dark web monitoring where available.

As a precaution, Nissan has restricted payroll access so that staff must use a network computer or secured VPN to view pay slips or change direct deposit details, and it is adding extra identity checks before processing payroll requests. It urged employees to watch for phishing, change reused passwords and enable multi-factor authentication (MFA).

Simon Pamplin, CTO at data security firm Certes, called it “a mass-casualty event across hundreds of unrelated organizations,” warning that patching the flaw does nothing for data already taken during the exploitation window.

Nissan said its investigation was ongoing and that affected individuals would be contacted directly.

Image credit: Luthfi Syahwal / Shutterstock.com



Source

Share. Facebook Twitter Pinterest LinkedIn Tumblr Email
Previous ArticleTrump Order Sets 2030 Deadline for Federal Post-Quantum Crypto Migration
Next Article FortiBleed Targeted FortiGate Firewalls in 110 Million-Credential Harvesting Operation
Team-CWD
  • Website

Related Posts

News

Anthropic’s Fable 5 and Mythos 5 Are Back with New Security Guardrails

July 1, 2026
News

Miasma Malware Targets npm Packages and GitHub Actions in Supply Chain Attack

July 1, 2026
News

Veil#Drop Uses Google Blogspot to Deploy PureLog Stealer

July 1, 2026
Add A Comment
Leave A Reply Cancel Reply

Latest News

North Korean Hackers Turn JSON Services into Covert Malware Delivery Channels

November 24, 202522 Views

macOS Stealer Campaign Uses “Cracked” App Lures to Bypass Apple Securi

September 7, 202517 Views

North Korean Hackers Target Crypto Firms with ClickFix and Zoom Lures

April 29, 202610 Views

Why SOC Burnout Can Be Avoided: Practical Steps

November 14, 20259 Views

Cyber M&A Roundup: Cyber Giants Strengthen AI Security Offerings

December 1, 20258 Views
Stay In Touch
  • Facebook
  • YouTube
  • TikTok
  • WhatsApp
  • Twitter
  • Instagram
Most Popular

North Korean Hackers Turn JSON Services into Covert Malware Delivery Channels

November 24, 202522 Views

macOS Stealer Campaign Uses “Cracked” App Lures to Bypass Apple Securi

September 7, 202517 Views

North Korean Hackers Target Crypto Firms with ClickFix and Zoom Lures

April 29, 202610 Views
Our Picks

A stealthy RAT burrowing deep into Android devices

May 26, 2026

Beware of Winter Olympics scams and other cyberthreats

February 2, 2026

Scams target soccer fans with fake World Cup tickets, merchandise

May 22, 2026

Subscribe to Updates

Get the latest news from cyberwiredaily.com

Facebook X (Twitter) Instagram Pinterest
  • Home
  • Contact
  • Privacy Policy
  • Terms of Use
  • California Consumer Privacy Act (CCPA)
© 2026 All rights reserved.

Type above and press Enter to search. Press Esc to cancel.