ShinyHunters breached 100+ orgs via PeopleSoft flaw

ShinyHunters breached more than 100 organizations through an unauthenticated remote code execution flaw in Oracle PeopleSoft before Oracle issued an advisory. Roughly two-thirds of the victims were universities, targeted not for their data but because higher education is under-resourced on security and slow to patch, making it the softest segment of a widely deployed enterprise stack.