← Back to Cybersecurity | ← All Articles
Cybersecurity

Major Software Vulnerabilities Under Active Attack

Thursday, July 2, 2026 DrakX Intelligence · Analyzed & Published Thursday, July 2, 2026
Hackers are actively exploiting serious security flaws in Oracle E-Business Suite and Microsoft SharePoint, affecting thousands of companies worldwide. Security agencies are warning organizations to patch these vulnerabilities immediately.
⚡ HIGH CONVERGENCE
3 pillars detected
CybersecurityBig Tech & MarketsGeopolitics & Global Events

Cybersecurity experts are sounding the alarm about two major software vulnerabilities that criminals are actively exploiting right now. The flaws affect widely-used business software from Oracle and Microsoft, putting thousands of companies at risk.

The first vulnerability exists in Oracle E-Business Suite, a program many large businesses use to manage their operations. Security researchers discovered that hackers have already started attacking this flaw, known as CVE-2026-46817. According to reports, over 900 Oracle E-Business instances have been exposed to ongoing attacks. This means hackers have identified and are targeting more than 900 separate systems running this software.

The second critical issue involves Microsoft SharePoint, a popular platform that companies use to share documents and collaborate on projects. This vulnerability allows attackers to execute remote code, meaning they can run malicious programs on affected systems from far away. The U.S. Cybersecurity and Infrastructure Security Agency, or CISA, has warned that this Microsoft SharePoint flaw is currently being actively exploited by hackers in real-world attacks.

When a vulnerability is "actively exploited," it means hackers have already discovered how to break through that security weakness and are using it to attack real companies right now. This makes these situations especially urgent because organizations cannot wait—they need to act immediately.

Both vulnerabilities are serious because they can allow attackers to gain unauthorized access to company systems and data. In the case of Microsoft SharePoint, the remote code execution capability means attackers could potentially take control of affected computers entirely.

CISA has issued public warnings to alert organizations about these threats. The agency recommends that companies using either Oracle E-Business Suite or Microsoft SharePoint apply security updates as soon as possible. These updates, called patches, fix the security holes that hackers are currently exploiting.

For many businesses, this creates an urgent priority. Companies must identify whether they are running vulnerable versions of these programs and then quickly install the necessary patches. Delaying this work leaves their systems exposed to attack.

These incidents demonstrate why staying current with software updates is critical for cybersecurity. When companies delay installing security patches, they leave themselves vulnerable to hackers who are actively looking for these weaknesses. Organizations using Oracle E-Business Suite or Microsoft SharePoint should treat this as a high-priority security issue and update their systems immediately.


vulnerabilities Oracle Microsoft SharePoint cyber attacks CISA security patches
// INTELLIGENCE SOURCES
undefined·undefined·undefined·undefined
RELATED INTELLIGENCE
Cybersecurity
Software Flaws Exploited Within Hours of Discovery
Cybersecurity
Cyberattackers Target Ukraine and Business Cloud Services With New Malware
Cybersecurity
Hackers Expand Cyberattacks Using New Malware and Cloud Service Exploits