<?xml version='1.0' encoding='UTF-8'?>
<?xml-stylesheet href="/static/style.xsl" type="text/xsl"?>
<feed xmlns="http://www.w3.org/2005/Atom" xml:lang="en">
  <id>https://vulnerability.circl.lu/sightings/feed</id>
  <title>Most recent sightings.</title>
  <updated>2026-07-12T12:18:41.304715+00:00</updated>
  <author>
    <name>Vulnerability-Lookup</name>
    <email>info@circl.lu</email>
  </author>
  <link href="https://vulnerability.circl.lu" rel="alternate"/>
  <generator uri="https://lkiesow.github.io/python-feedgen" version="1.0.0">python-feedgen</generator>
  <subtitle>Contains only the most 10 recent sightings.</subtitle>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/e8d7670f-53bc-4a6f-8158-1ee31b037ac2/export</id>
    <title>e8d7670f-53bc-4a6f-8158-1ee31b037ac2</title>
    <updated>2026-07-12T12:18:41.322968+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "e8d7670f-53bc-4a6f-8158-1ee31b037ac2", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35273", "type": "exploited", "source": "https://t.me/ctinow/251694", "content": "ShinyHunters Exploits Oracle PeopleSoft Zero-Day (CVE-2026-35273) to Breach Universities\nhttps://ift.tt/yZ231LO", "creation_timestamp": "2026-07-12T09:01:48.098522Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/e8d7670f-53bc-4a6f-8158-1ee31b037ac2/export"/>
    <published>2026-07-12T09:01:48.098522+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/ef726baf-f00a-45e6-9c56-db31952fbc5f/export</id>
    <title>ef726baf-f00a-45e6-9c56-db31952fbc5f</title>
    <updated>2026-07-12T12:18:41.324840+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "ef726baf-f00a-45e6-9c56-db31952fbc5f", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35273", "type": "exploited", "source": "https://t.me/CyberSecurityIL/85289", "content": "\ud83d\udc54\u05e7\u05d1\u05d5\u05e6\u05ea ShinyHunters \u05de\u05e4\u05e8\u05e1\u05de\u05ea \u05db\u05e7\u05e8\u05d1\u05df \u05d0\u05ea \u05d7\u05d1\u05e8\u05ea \u05d4\u05d0\u05d5\u05e4\u05e0\u05d4 Ralph Lauren \u05db\u05e9\u05d4\u05d9\u05d0 \u05d1\u05de\u05e7\u05d1\u05d9\u05dc \u05de\u05e0\u05e6\u05dc\u05ea \u05d7\u05d5\u05dc\u05e9\u05d4 \u05d1-Oracle.\n\n\u05d1\u05d0\u05d9\u05e8\u05d5\u05e2 \u05e9\u05dc Ralph Lauren \u05d8\u05d5\u05e2\u05e0\u05ea \u05d4\u05e7\u05d1\u05d5\u05e6\u05d4 \u05db\u05d9 \u05d2\u05e0\u05d1\u05d4 \u05de\u05d9\u05d3\u05e2 \u05e8\u05d2\u05d9\u05e9, \u05db\u05d5\u05dc\u05dc \u05de\u05d9\u05d3\u05e2 \u05e9\u05dc \u05dc\u05e7\u05d5\u05d7\u05d5\u05ea \u05d5\u05ea\u05db\u05e0\u05d9\u05d5\u05ea \u05e2\u05ea\u05d9\u05d3\u05d9\u05d5\u05ea \u05e9\u05dc \u05d4\u05d7\u05d1\u05e8\u05d4.\n\n\u05d1\u05de\u05e7\u05e8\u05d4 \u05e9\u05dc Oracle \u05d8\u05d5\u05e2\u05e0\u05ea \u05d4\u05e7\u05d1\u05d5\u05e6\u05d4 \u05db\u05d9 \u05d4\u05d9\u05d0 \u05e0\u05d9\u05e6\u05dc\u05d4 \u05d7\u05d5\u05dc\u05e9\u05ea Zero-Day \u05d1\u05e9\u05e8\u05ea\u05d9 Oracle PeopleSoft \u05d5\u05ea\u05e7\u05e4\u05d4 \u05dc\u05de\u05e2\u05dc\u05d4 \u05de-100 \u05d0\u05e8\u05d2\u05d5\u05e0\u05d9\u05dd.\n\u05d1-Oracle \u05d0\u05d9\u05e9\u05e8\u05d5 \u05db\u05d9 \u05d0\u05db\u05df \u05d4\u05d9\u05d9\u05ea\u05d4 \u05d7\u05d5\u05dc\u05e9\u05d4 \u05e9\u05e0\u05d5\u05e6\u05dc\u05d4 (CVE-2026-35273) \u05d5\u05d4\u05d9\u05d0 \u05ea\u05d5\u05e7\u05e0\u05d4 \u05d1\u05e2\u05d3\u05db\u05d5\u05df \u05d7\u05d9\u05e8\u05d5\u05dd.\n\nhttps://t.me/CyberSecurityIL/9050", "creation_timestamp": "2026-07-12T08:00:06.610193Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/ef726baf-f00a-45e6-9c56-db31952fbc5f/export"/>
    <published>2026-07-12T08:00:06.610193+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/50e63ff0-6bfa-443e-93c5-304245461bf5/export</id>
    <title>50e63ff0-6bfa-443e-93c5-304245461bf5</title>
    <updated>2026-07-12T12:18:41.324939+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "50e63ff0-6bfa-443e-93c5-304245461bf5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35273", "type": "exploited", "source": "https://t.me/TengkorakCyberCrewzz/11088", "content": "ShinyHunters Exploits Oracle PeopleSoft Zero-Day (CVE-2026-35273) to Breach Universities \u2013 thehackernews.com\n\nFri, 12 Jun 2026 04:29:23", "creation_timestamp": "2026-07-12T06:00:05.122834Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/50e63ff0-6bfa-443e-93c5-304245461bf5/export"/>
    <published>2026-07-12T06:00:05.122834+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/eeb559a1-d035-4da9-a20b-2357447b39c6/export</id>
    <title>eeb559a1-d035-4da9-a20b-2357447b39c6</title>
    <updated>2026-07-12T12:18:41.325010+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "eeb559a1-d035-4da9-a20b-2357447b39c6", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35273", "type": "exploited", "source": "https://t.me/cibsecurity/89721", "content": "\ud83d\udd8b\ufe0f ShinyHunters Exploits Oracle PeopleSoft Zero-Day (CVE-2026-35273) to Breach Universities \ud83d\udd8b\ufe0f\n\nThe ShinyHunters extortion crew exploited an unpatched flaw in Oracle PeopleSoft to break into enterprise systems, steal data, and demand payment to keep it private. The campaign hit universities hardest.  Google's Mandiant attributes it to the group it tracks as UNC6240, and dates the activity between May 27 and June 9. Oracle did not publish its advisory until June 10, so the bug was a.\n\n\ud83d\udcd6 Read more.\n\n\ud83d\udd17 Via \"The Hacker News\"\n\n----------\n\ud83d\udc41\ufe0f Seen on @cibsecurity", "creation_timestamp": "2026-07-12T06:00:04.959264Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/eeb559a1-d035-4da9-a20b-2357447b39c6/export"/>
    <published>2026-07-12T06:00:04.959264+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/280becce-9262-4246-8387-a331de8ef336/export</id>
    <title>280becce-9262-4246-8387-a331de8ef336</title>
    <updated>2026-07-12T12:18:41.325077+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "280becce-9262-4246-8387-a331de8ef336", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35273", "type": "exploited", "source": "https://t.me/BleepingComputer/24880", "content": "\u200aOracle mitigates PeopleSoft zero-day exploited in data theft attacks\n\nOracle is warning about a critical PeopleSoft Suite zero-day vulnerability tracked as\u00a0CVE-2026-35273 that allows unauthenticated remote code execution, with the flaw actively exploited in ShinyHunter data theft attacks. [...]\n\nhttps://www.bleepingcomputer.com/news/security/oracle-mitigates-peoplesoft-zero-day-exploited-in-data-theft-attacks/", "creation_timestamp": "2026-07-12T06:00:04.812831Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/280becce-9262-4246-8387-a331de8ef336/export"/>
    <published>2026-07-12T06:00:04.812831+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/4ca5829e-fc18-468a-ae0c-50256e8baaa2/export</id>
    <title>4ca5829e-fc18-468a-ae0c-50256e8baaa2</title>
    <updated>2026-07-12T12:18:41.325143+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "4ca5829e-fc18-468a-ae0c-50256e8baaa2", "vulnerability_lookup_origin": "c8fb6bf1-f81f-4cb8-95b1-eadbb3b54ee8", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35273", "type": "exploited", "source": "https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/fafeb375-aef3-47c3-83a9-d7a194354ef6", "content": "", "creation_timestamp": "2026-07-12T01:00:21.637475Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/4ca5829e-fc18-468a-ae0c-50256e8baaa2/export"/>
    <published>2026-07-12T01:00:21.637475+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/fedd9dbf-488d-4f64-b026-52d89114b872/export</id>
    <title>fedd9dbf-488d-4f64-b026-52d89114b872</title>
    <updated>2026-07-12T12:18:41.325207+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "fedd9dbf-488d-4f64-b026-52d89114b872", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35273", "type": "seen", "source": "https://bsky.app/profile/hermes71.bsky.social/post/3mqbeofhicy2j", "content": "Daily IT Security Digest \u2014 2026-07-10\nalso affects Oracle PeopleSoft (CVE-2026-35273). Systems with BitLocker should be reviewed and additional access controls considered.\n   Source: https://mastodon.social/@Analyst207/116732756276891823, https://hermes71.bsky.social\n\n4. **KDDI Zero-Day Breach", "creation_timestamp": "2026-07-10T05:03:19.531641Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/fedd9dbf-488d-4f64-b026-52d89114b872/export"/>
    <published>2026-07-10T05:03:19.531641+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/88bbf044-6872-4590-9288-232172e3417e/export</id>
    <title>88bbf044-6872-4590-9288-232172e3417e</title>
    <updated>2026-07-12T12:18:41.325272+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "88bbf044-6872-4590-9288-232172e3417e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35273", "type": "seen", "source": "https://bsky.app/profile/hermes71.bsky.social/post/3mq4dpqbqv322", "content": "Daily IT Security Digest \u2014 2026-07-08\n(CVE-2026-35273).\nSources: Mastodon #zero-day\n\n8. **Tenda Router Backdoor Revealed by CERT/CC**\nCERT/CC disclosed a critical backdoor in multiple Tenda router models that allows full admin access using a hidden password. This is not a weak-password issue but a", "creation_timestamp": "2026-07-08T05:02:52.852473Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/88bbf044-6872-4590-9288-232172e3417e/export"/>
    <published>2026-07-08T05:02:52.852473+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/11752a42-7228-4e14-a6df-5307161be426/export</id>
    <title>11752a42-7228-4e14-a6df-5307161be426</title>
    <updated>2026-07-12T12:18:41.325336+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "11752a42-7228-4e14-a6df-5307161be426", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35273", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3mq2lp44ah22b", "content": "\u300cOracle PeopleSoft\u300d\u8106\u5f31\u6027\u3001\u30e9\u30f3\u30b5\u30e0\u653b\u6483\u306b\u3082\u60aa\u7528 - \u7c73\u5f53\u5c40\u304c\u6ce8\u610f\u559a\u8d77\n\nOracle\u306e\u696d\u52d9\u30a2\u30d7\u30ea\u30b1\u30fc\u30b7\u30e7\u30f3\u57fa\u76e4\u300cPeopleSoft Enterprise PeopleTools\u300d\u306b\u8106\u5f31\u6027\u304c\u898b\u3064\u304b\u3063\u305f\u554f\u984c\u3067\u7c73\u5f53\u5c40\u304c\u6ce8\u610f\u559a\u8d77\u3092\u884c\u3063\u305f\u3002\u30e9\u30f3\u30b5\u30e0\u30a6\u30a7\u30a2\u306b\u3082\u60aa\u7528\u3055\u308c\u3066\u3044\u308b\u3002\n\n\u7c73\u30b5\u30a4\u30d0\u30fc\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u30a4\u30f3\u30d5\u30e9\u30b9\u30c8\u30e9\u30af\u30c1\u30e3\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u5e81\uff08CISA\uff09\u306f\u73fe\u5730\u6642\u95932026\u5e746\u670812\u65e5\u3001\u300c\u60aa\u7528\u304c\u78ba\u8a8d\u3055\u308c\u305f\u8106\u5f31\u6027\u30ab\u30bf\u30ed\u30b0\uff08KEV\uff09\u300d\u3078\u300cCVE-2026-35273\u300d\u3092\u8ffd\u52a0\u3057\u305f\u3002\n\n\u300cCVE-2026-35273\u300d\u306f\u3001\u91cd\u8981\u6a5f\u80fd\u306b\u5bfe\u3059\u308b\u8a8d\u8a3c\u304c\u6b20\u5982\u3057\u3066\u3044\u308b\u8106\u5f31\u6027\u3002\u8a8d\u8a3c\u3092\u5fc5\u8981\u3068\u3059\u308b\u3053\u3068\u306a\u304f\u3001\u300cPe...", "creation_timestamp": "2026-07-07T12:20:28.245263Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/11752a42-7228-4e14-a6df-5307161be426/export"/>
    <published>2026-07-07T12:20:28.245263+00:00</published>
  </entry>
  <entry>
    <id>https://vulnerability.circl.lu/sighting/be2f8ee7-5a55-470e-bc00-bc058788173b/export</id>
    <title>be2f8ee7-5a55-470e-bc00-bc058788173b</title>
    <updated>2026-07-12T12:18:41.325406+00:00</updated>
    <author>
      <name>Automation user</name>
      <uri>https://cvepremium.circl.lu/user/automation</uri>
    </author>
    <content>{"uuid": "be2f8ee7-5a55-470e-bc00-bc058788173b", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2026-35273", "type": "seen", "source": "https://bsky.app/profile/getpokemon7.bsky.social/post/3mq2lkyhpo22b", "content": "\u7c73\u56fd\u30b5\u30a4\u30d0\u30fc\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u30fb\u30a4\u30f3\u30d5\u30e9\u30b9\u30c8\u30e9\u30af\u30c1\u30e3\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u5e81\uff08CISA\uff09\u306f\u3001Oracle PeopleSoft Enterprise PeopleTools\u306e\u8106\u5f31\u6027\u3092\u65e2\u77e5\u306e\u60aa\u7528\u3055\u308c\u305f\u8106\u5f31\u6027\u30ea\u30b9\u30c8\u306b\u8ffd\u52a0\u3057\u305f\u3002\n\n\u7c73\u56fd\u30b5\u30a4\u30d0\u30fc\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u30fb\u30a4\u30f3\u30d5\u30e9\u30b9\u30c8\u30e9\u30af\u30c1\u30e3\u30bb\u30ad\u30e5\u30ea\u30c6\u30a3\u5e81\uff08CISA\uff09 \u306f\u3001Oracle PeopleSoft Enterprise PeopleTools\u306e\u8106\u5f31\u6027\uff08CVE-2026-35273\u3001CVSS\u30b9\u30b3\u30a29.8\uff09\u3092\u65e2\u77e5\u306e\u60aa\u7528\u3055\u308c\u305f\u8106\u5f31\u6027\uff08KEV\uff09\u30ab\u30bf\u30ed\u30b0\u306b\u8ffd\u52a0\u3057\u307e\u3057\u305f\u3002\n\nOracle PeopleSoft Enterprise PeopleTools\u306f\u3001Oracle Pe...", "creation_timestamp": "2026-07-07T12:18:05.538363Z"}</content>
    <link href="https://vulnerability.circl.lu/sighting/be2f8ee7-5a55-470e-bc00-bc058788173b/export"/>
    <published>2026-07-07T12:18:05.538363+00:00</published>
  </entry>
</feed>
