A cybersecurity threat targeting universities has exposed a serious security vulnerability in widely-used software. ShinyHunters, a known hacking group, exploited a zero-day vulnerability in Oracle PeopleSoft—software used by many educational institutions—to break into computer systems and steal sensitive information.
A zero-day vulnerability is a security flaw that nobody knew about before hackers discovered it. This means the software creators had no time to prepare a fix before criminals could use it. Oracle PeopleSoft is enterprise software used by thousands of organizations worldwide, including colleges and universities, to manage human resources, finances, and student information.
According to security researchers, ShinyHunters successfully used the vulnerability, identified as CVE-2026-35273, to gain unauthorized access to multiple university networks. This represents a significant threat to higher education institutions that rely on PeopleSoft to store and manage confidential student and employee data.
The discovery was confirmed by multiple cybersecurity sources and monitoring organizations. Google's security team independently verified that the vulnerability was being actively exploited in real-world attacks. This confirmation from a major tech company underscores the severity of the threat and the need for immediate action.
Oracle responded to the attacks by releasing a security update to fix the vulnerability. The company issued a mitigation, which means they created a solution to block the exploited flaw and prevent future attacks through this specific method. However, security experts emphasize that organizations using PeopleSoft needed to apply the patch quickly to protect their systems.
The timing of this attack highlights an ongoing challenge in cybersecurity: hackers often find flaws before software companies do. Universities store enormous amounts of personal information about students, including Social Security numbers, financial records, and health data. This makes them attractive targets for thieves seeking valuable information to sell or use for identity theft.
The incident serves as a reminder of why cybersecurity is critical for organizations that handle sensitive data. It also demonstrates why security researchers and companies must work together to identify and fix vulnerabilities before criminals can weaponize them. For universities specifically, this breach underscores the need for strong security practices and quick application of software updates to protect student and employee information.