Kodak has officially confirmed a data breach after the cybercriminal group ShinyHunters claimed responsibility for hacking the company's systems. The incident highlights growing concerns about how hackers exploit unpatched security vulnerabilities in widely-used business software.
According to reports from multiple cybersecurity sources, ShinyHunters used a zero-day vulnerability in Oracle PeopleSoft—identified as CVE-2026-35273—to gain unauthorized access to networks. A zero-day vulnerability is a security flaw that no one has publicly discovered before, making it especially dangerous because companies haven't had time to create fixes.
While initial reports linked this same vulnerability to breaches at multiple universities, ShinyHunters expanded their attack campaign to include Kodak, the imaging technology company. The group operates as an extortion gang, meaning they steal data and then demand payment in exchange for not releasing the stolen information publicly.
The Oracle PeopleSoft platform is enterprise software used by thousands of organizations worldwide to manage human resources, payroll, and other important business functions. Because so many companies rely on this software, a vulnerability affecting it can create widespread risk across multiple industries and sectors.
Kodak's confirmation of the breach means the company is now working to understand what information was accessed during the attack. Customers and shareholders are particularly concerned about whether sensitive data like financial records, employee information, or intellectual property was compromised.
The ShinyHunters breach demonstrates a common pattern in modern cybercrime: attackers find a critical vulnerability in software used by many organizations, then systematically target multiple companies using that same flaw. This approach allows criminals to maximize their potential victims and potential profits from extortion demands.
Security experts continue to recommend that companies immediately patch known vulnerabilities in their systems and monitor for suspicious activity that might indicate unauthorized access. Organizations using Oracle PeopleSoft are being urged to apply available security updates and review their access logs for signs of compromise.
The incident also underscores the importance of information security training for employees, as human error remains one of the most common ways hackers gain initial access to company networks. As cyber threats continue to evolve, companies of all sizes must remain vigilant about protecting their data and systems from increasingly sophisticated attack methods.