 |
Post Asv07JHzudGexov3rc by [email protected] |
 |
More posts by [email protected] |
|
Post #AsHQHLioY6C5tCVsvo by [email protected] |
|
0 likes, 0 repeats |
|
|
|
Somebody is claiming to have exfiltrated 6 million lines of data with Oracle Cl… |
|
|
|
Post #AsHQUoplcctjwZBjCC by [email protected] |
|
0 likes, 0 repeats |
|
|
|
If anybody is interested, the servers they claim they targeted all run Oracle W… |
|
|
|
Post #AsHQgRuefUDIKW1JPk by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@GossiTheDog probably coincidence, but just in case: https://infosec.exchange/@… |
|
|
|
Post #AsHWDkakjyT5aZPSzY by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@GossiTheDog WebLogic? |
|
|
|
Post #AsHtLT3y5siiUEiwYS by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog haha, weblogic.. what is this? The German government? |
|
|
|
Post #AsHtuouWr9cMNjAMAS by [email protected] |
|
0 likes, 0 repeats |
|
|
|
Has anybody else got Oracle to comment on this? No reply to my queries. |
|
|
|
Post #AsHud9F6cktIBJval6 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog WebLogic? You mean the framework that used to have a new RCE every… |
|
|
|
Post #AsI6GrJrmRzNfmIDTs by [email protected] |
|
0 likes, 0 repeats |
|
|
|
Oracle are denying a breach to @BleepingComputer, but the threat actor has pro… |
|
|
|
Post #AsI8zWP4amWJk69WtM by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog And we were told that they were running a vulnerable version with … |
|
|
|
Post #AsIKNoBhDn4VLSgAcK by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@GossiTheDogAs far as I know, no official comment from Oracle, but big customer… |
|
|
|
Post #AsJs2l5d8RPlFuw5r6 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog Thanks. I will bring it up with our account team on Monday. |
|
|
|
Post #AsO4qRcrkfqBS0mQK0 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
The Oracle thing keeps getting more strange. The threat actor has supplied an … |
|
|
|
Post #AsO5YDBkn4lTPqy5rM by [email protected] |
|
0 likes, 0 repeats |
|
|
|
If anybody from Oracle follows me, I definitely think the OCI team needs to spi… |
|
|
|
Post #AsO6UToH9PlXlIlrNI by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog What are the odds on CVE-2024-8068 and CVE-2024-8069? |
|
|
|
Post #AsOD9WOt1WsPOUqgim by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@faebudo In 2019?@GossiTheDog |
|
|
|
Post #AsODmFfZA9qonW7PYu by [email protected] |
|
0 likes, 0 repeats |
|
|
|
Hudson Rock are reporting the Oracle Cloud breach claim threat actor has provid… |
|
|
|
Post #AsOGDD2BGhtWLrg7fM by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog Never enough popcorn for #Oracle, my least favorite tech company o… |
|
|
|
Post #AsOHZqi6XA6ZjKeByi by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@GossiTheDog looks like recorded support calls that could have been in breached… |
|
|
|
Post #AsOaocTtcNix4Wl3wW by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog Go to the Cloud @Viss said, it will be fine @Viss said. |
|
|
|
Post #AsPVJMFFd2ch7u8qrw by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog In fairness to Oracle, the whole OCI offering feels like a poorly … |
|
|
|
Post #AsPXj1XVQxe2LZ2x4S by [email protected] |
|
0 likes, 0 repeats |
|
|
|
CloudSEK are doubling down on their Oracle Cloud breach reporting, despite a de… |
|
|
|
Post #AsPenYACmNEaMmFl20 by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@GossiTheDog @BleepingComputer One thing you point out here has me thinking...D… |
|
|
|
Post #AsPhwFkOv3Z3ib1bpA by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@definity @GossiTheDog @BleepingComputer ive been wondering that too. Or even t… |
|
|
|
Post #AsSW0xHCPCEnu5inKq by [email protected] |
|
0 likes, 1 repeats |
|
|
|
Bleeping Computer say multiple Oracle customers confirm their customer data has… |
|
|
|
Post #AsSWFA7lQzAJnx5CRU by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog oracle doing oracle things again :D |
|
|
|
Post #AsSWrGidMc7JGIUzq4 by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@GossiTheDog why would they tell the truth? Isn’t Larry buddies with Trump? I… |
|
|
|
Post #AsSXQKM7pjrgg2gia8 by [email protected] |
|
0 likes, 1 repeats |
|
|
|
Also, that YouTube video I linked above has two hours of audio of Oracle employ… |
|
|
|
Post #AsSZ4jteOQ99QaCdnc by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog I deeply respect that you got your priorities straight 🤣 👍 |
|
|
|
Post #AsSoJPhNGlb0ROurDc by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog @hacks4pancakes as they finalize their talks to control US TikTok |
|
|
|
Post #AsTBxECVjdo9JIQy3c by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog OAM11g I haven’t seen used in well over a decade. Surprising the… |
|
|
|
Post #AsTONk1HFs6myQaXxo by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@GossiTheDog I started the transcript. Here's what it's produced so fa… |
|
|
|
Post #AsTPFpF23YPAo3oNPs by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@GossiTheDog p.s. doesn't appear to have any sensitive customer information… |
|
|
|
Post #AsTSnMC8rCVkQc8l5k by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog is available a public list with the domains involved ? |
|
|
|
Post #AsTuDh4kXiuZTqSvAm by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@GossiTheDog job finished and transcripts are up. |
|
|
|
Post #AsTvWLJ9nZLfQRf1ns by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@keith_lawson @GossiTheDog supposedly from 2019 |
|
|
|
Post #AsTwFT2DuuKGQBG0rw by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@GossiTheDog @keith_lawson there are certainly some creds present. It’s not g… |
|
|
|
Post #AsU6efZJS9Ha4iOH7A by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@barunick @GossiTheDog Sorry, I was just referring to the transcript of the you… |
|
|
|
Post #AsVcqsKBFBVCnr8W8W by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog @barunick @keith_lawson Imagine having a data breach where the hac… |
|
|
|
Post #AsW8yv8tqbB2OQjx7g by [email protected] |
|
0 likes, 1 repeats |
|
|
|
There’s now been a data breach at Oracle Health, which is separate to the ong… |
|
|
|
Post #AsW9NzRP0FKwxpLfiC by [email protected] |
|
0 likes, 0 repeats |
|
|
|
Going back to the Oracle Cloud security incident, the 2019 video posted by the… |
|
|
|
Post #AsWDEE3iCO3ZDmrp0y by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog alarming, absolutely. 100%.It's also 100% on-brand and consist… |
|
|
|
Post #AsWDst74ylgU8GpblY by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog In Family Guy they have a greased up person that appears every onc… |
|
|
|
Post #AsWDw6Ny5aR6AHGPDc by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog Remember that Larry Ellisson (Oracle CEO) is lobbying for a genral… |
|
|
|
Post #AsWFYubBwgecrBWDY0 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog have we EVER been led to expect more from them? |
|
|
|
Post #AsWOTPIpm8gvvvNkDg by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog Its been alarming for a very long time. I had a rather contentious… |
|
|
|
Post #AsWQEAkzm2n4NvPwmG by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@chort @GossiTheDog Yep: https://www.oracle.com/corporate/executives/mary-ann-d… |
|
|
|
Post #AsWQEAt9HjJQnDESUC by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@cR0w @chort @GossiTheDog don't you all worry, there Drumpf Administration … |
|
|
|
Post #AsWQIqHFLRJ6JdjHfc by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@jt_rebelo @cR0w @chort @GossiTheDog While I have no faith in our regulatory en… |
|
|
|
Post #AsWQIqNGz27ycKY640 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@SteamDieselEV as a lawyer that grew tired of insurance work, I totally agree (… |
|
|
|
Post #AsWQIqU0ZzW0xDhTYu by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@jt_rebelo @SteamDieselEV @cR0w @chort @GossiTheDog I always figured insurance … |
|
|
|
Post #AsWQIqa2DaKtFuWHxI by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@fencepost they already did it (somewhat) with aeroplanes, trains and cars. One… |
|
|
|
Post #AsWYeKF7vXMYy3Uck4 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog IOW they know they are screwed, they are lawyering up, asses are b… |
|
|
|
Post #AsWa5PP0x5wSk5b0RE by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog it’s completely on brand for their corporate culture. |
|
|
|
Post #AsWatcorLJJ0pid6Po by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog 2019 Oracle: passwords in plain text while screensharing and recor… |
|
|
|
Post #AsWeppw91ueOAtUDMu by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog wonder why non us hospitals would not been stolen... |
|
|
|
Post #AsboNLkncuG9mt2CPY by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog What would the suggested mitigations be for customer impacted? Ver… |
|
|
|
Post #Asc3UJK8YgBLafLB2m by [email protected] |
|
0 likes, 2 repeats |
|
|
|
I can confirm there has definitely been a serious security incident at Oracle&#… |
|
|
|
Post #Asc472HfqTqO2Jec2y by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog Oracle? Using an army of lawyers and creative phrasing to lie to t… |
|
|
|
Post #Asc4BQatP4poagjnlY by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog Interesting. There's however an extra space in the Youtube lin… |
|
|
|
Post #Asc4TTPve5xGYjDLX6 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog Ah right, then there's an extra space in that link on medium. … |
|
|
|
Post #Asc4eETBYnsbNyrriC by [email protected] |
|
0 likes, 0 repeats |
|
|
|
Oracle have attempted to hide the Oracle Access Manager access, by requesting a… |
|
|
|
Post #Asc4nJU2Hy5JXeazhY by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@GossiTheDog thanks for the write up. Much appreciated, this will help. |
|
|
|
Post #Asc4s24eRasIzlyMJU by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog ah, the pretending it never happened strategy. Classic. |
|
|
|
Post #Asc5PYCI21hEBDWnia by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog Streisand called and wants her URLs back... |
|
|
|
Post #Asc5g2jyExtNXd986a by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@GossiTheDog reminds me of their "Oracle 9: Unbreakable" campaign, wh… |
|
|
|
Post #Asc7anOG5IUSOUcG0G by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@GossiTheDog can’t wait for the 8k filing |
|
|
|
Post #Asc98ppPctyPkt70wy by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog Something smells weird. Can I email you about that OCI thing? |
|
|
|
Post #Asc9Vnvgqt6wWj08R6 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog Rumour is, that Oracle are about to fess up to a breach on their … |
|
|
|
Post #Asc9cLQBF9908ZNhgm by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog done |
|
|
|
Post #AscAdb6yUcAJ2kYkGO by [email protected] |
|
0 likes, 0 repeats |
|
|
|
The wordplay here is Oracle Cloud. Oracle rebadged old Oracle Cloud services to… |
|
|
|
Post #AscArBl9Y0bcTBpimu by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog When was the rebrand? Was it already "classic" when the … |
|
|
|
Post #AscKeqbZNBlWvW6Xx2 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog this just makes it worse. Idiots. |
|
|
|
Post #AscKn7XOImErl75xA0 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog 🙄 |
|
|
|
Post #AscKoEJcaTDt4OBQmG by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@rox_lukas @GossiTheDog Yeah, I rolled credentials as soon as I understood the … |
|
|
|
Post #AscKu2Jk6nE3b10bwm by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@cjust @GossiTheDog 👀 |
|
|
|
Post #AscL1pSHoW3A1Nikoy by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog :yikes: |
|
|
|
Post #AscLIrH8IeaKaacl2u by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@BernardSheppard @GossiTheDog regenerating private/public keypairs for API acce… |
|
|
|
Post #AscLKxBHJX95U4suy8 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog yet one more reason not to touch anything Oracle with a 3-meter po… |
|
|
|
Post #AscM1yBVST0r36VG64 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog gosh, as if archive.org were the only archiving website out there.… |
|
|
|
Post #AscMlMtQRKAoiCh4Ea by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@davep @GossiTheDog The change happened last year for us. The old Oracle My Ser… |
|
|
|
Post #AscP8az2PwMQyvWRGa by [email protected] |
|
0 likes, 1 repeats |
|
|
|
Apparently nobody from Oracle thought to exclude this URL as it still works htt… |
|
|
|
Post #AscPBQvEHXtGe55slU by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog any notion as to whether their NetSuite softwarte is within scope … |
|
|
|
Post #AscPEa0yvpMDiOHjIu by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog oof |
|
|
|
Post #AscPI3KaOJmvVS6vD6 by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@GossiTheDog “I pray for their secops” |
|
|
|
Post #AscPP5dSDpwcgEI99U by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog throw “Oracle Health” into that list of word play with the oth… |
|
|
|
Post #AscRw7Rii7WFlDgFYe by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@GossiTheDog "It's not the crime, it's the coverup."Oracle co… |
|
|
|
Post #AscXaokHdwg7PCaag4 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog That is so scummy.I wonder if this system also stores the data for… |
|
|
|
Post #AscaF09OrHx8GlcsWe by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog oh my god you couldn't make this shit up. |
|
|
|
Post #Ascas9OCRWs8DUDT2u by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog funny and sad at the same time |
|
|
|
Post #AscdQt4fIHBreylq0e by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog It's also there lolhttps://archive.is/lFPdO |
|
|
|
Post #AsceAjWb8ACVMbhH7I by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog I think I'm gonna run this as an IR tabletop, mostly so I can … |
|
|
|
Post #AsceLp2Ez2iPdgmkJk by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@devnoname120 oracle's understanding of this internet thing has not changed… |
|
|
|
Post #AsceMfFUr0DTZrO4CO by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@jkmcnk Too busy rev'ing up their judiciary racketeering arsenal to follow … |
|
|
|
Post #AsceNAtzAW1VkPZL72 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog Glad the only thing I have there is a virtual ttrp server. |
|
|
|
Post #AsceO5sBLtRuRKACiO by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@devnoname120 it's their core business after all, they did this in sailing … |
|
|
|
Post #AscsxSTGiu5Y1KGfNg by [email protected] |
|
0 likes, 1 repeats |
|
|
|
Multiple Oracle cloud customers have reached out to me to say Oracle have now c… |
|
|
|
Post #Asct8JDbSsRUVd79to by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog serious question, is this legal, even in the US? I know it sure as… |
|
|
|
Post #AsctFJlznhpQFyXklE by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog I see things haven't changed in how Oracle "mitigates&quo… |
|
|
|
Post #AsctyGdWJG2FYl0pyy by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog A friend of mine has described a Sev0 incident as a Sev1 that esca… |
|
|
|
Post #Ascuy8lHghWv5g9Cee by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog what complete bullshit. |
|
|
|
Post #AscwufP0aX2N4eCQwi by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@pussreboots @GossiTheDog samesies, but from the security testing side.https://… |
|
|
|
Post #AscxHjC0f6JvUR7FDc by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog Transparency ™️ |
|
|
|
Post #Ascz4rzWpxqevFH4yW by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@jerry time to send an orchid to whoever you know over there?@GossiTheDog |
|
|
|
Post #Asd3bRwr5M6nWXoZyi by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@barunick @GossiTheDog afaict you have most of the oligarchy. |
|
|
|
Post #Asd3cyrUCRGFtP28Ia by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@joacim @GossiTheDog basically this. If you’re not a customer with a support … |
|
|
|
Post #Asd3fDge3EBGS21wCO by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog @BleepingComputer oop |
|
|
|
Post #Asd3nefJd4sIRMQlEm by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@DJGummikuh @GossiTheDog is it legal?EXTREMELY. FUCKING. NOT.Is Oracle going to… |
|
|
|
Post #Asd3uKvbPVtVFlEc6K by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@DJGummikuh @GossiTheDog Oracle is the IT Vendor equivalent of Lucy moving thw … |
|
|
|
Post #Asd3wk4ctIe5otbQLw by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@DJGummikuh @GossiTheDog This. |
|
|
|
Post #Asd41qHfEEpuWq8IXw by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@fencepost @GossiTheDog I really do need to reach out to the people I know over… |
|
|
|
Post #Asd4JyG6JjRmTU2vA0 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@DJGummikuh "you" can do anything ilegal as long as there is no enfor… |
|
|
|
Post #Asd5oFSf1ToOT8vEVk by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog @briankrebs What… this Oracle? 😉https://go.theregister.com/fe… |
|
|
|
Post #AsdA05T2PCOSlV00jA by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@GossiTheDog This was a good write up thanks for sharing |
|
|
|
Post #AsdATu2jRezk1Lubvk by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@mhoye @GossiTheDog And if you've been through a couple of them - you can u… |
|
|
|
Post #AsdXaaMVJbfJxCJdtA by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog There just has to be a Signal group chat involved somehow. |
|
|
|
Post #AsddIr3r5Yy0G3WOpM by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog Maybe they should check out the specifications page of the robots.… |
|
|
|
Post #AsdetgwHmk3vX96soC by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@GossiTheDog This is some shady shit. What's the bet zombie dinosaur Oracle… |
|
|
|
Post #Ase0EZga2uko9lYxv6 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
Oracle Health customers dealing with the breach there of patient PII, if you’… |
|
|
|
Post #AseCyX8L4BEb0mECOm by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog Nice try, you aren't tricking me into joining a chat with atta… |
|
|
|
Post #AseLy477rMN2b2Vp6u by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog Unpopular opinion: Proof looks like web cache poisoning and not R… |
|
|
|
Post #AsePhCcpMSMdt5YU1g by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@neurovagrant @GossiTheDog 😱 |
|
|
|
Post #AseQiG7TxEXoy8xf0q by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog yeah is for another article about this I have read that seems to p… |
|
|
|
Post #AsetWTFmC8v6tlZWhU by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog Interesting. rose has stated on the BF thread that the data belong… |
|
|
|
Post #AsfoKauzZB7EaBKNw8 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
Heise has a look at the Oracle security incident. Oracle didn’t return reque… |
|
|
|
Post #AsfpHJ91IBA2XlszA0 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog Total radio silence so far, no statement - not even acknowledgemen… |
|
|
|
Post #AsfpepLriFkp5p6pbU by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@GossiTheDog When I asked Oracle for comment, a PR person responded and offered… |
|
|
|
Post #AsfpjWXH66muBTgYHw by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog fyi @heiseonline and @heisec are on here officially. |
|
|
|
Post #AsfpxcTxmjSEgIrFT6 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog @dangoodin I said the thing, but don't tell anyone I said the … |
|
|
|
Post #Asfq01xu0kw6IJ0lJw by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog I dunno. I think they were going to provide some sort of explanati… |
|
|
|
Post #AsfshrWkNeHGZUL0i0 by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@dangoodin @GossiTheDog what, so they were expecting you to report “some unsp… |
|
|
|
Post #AsfxasUWtePVJ0n12e by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog I'm actually genuinely intrigued to see whether this strategy … |
|
|
|
Post #AsfyYcIuD5xqTZq2AS by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog It's like those medieval battle movies where you've got th… |
|
|
|
Post #Asg33WyGUHeSjKBEMi by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@dangoodin @GossiTheDog We got the "oracle cloud no has breach" boile… |
|
|
|
Post #Asg39YxU0lFadCgt4S by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@dangoodin And bonus points for that going into the published article.@GossiThe… |
|
|
|
Post #Asg3C61U36jll4lnbU by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@dangoodin @GossiTheDog @adfichter @marcel War die Schweizer Admin-Cloud nicht … |
|
|
|
Post #Asg3VOAinOljY4I436 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@0xabad1dea Hey, it works for the US government and large mainstream media? (&q… |
|
|
|
Post #Asg3dQidD5nRlRzB2m by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog @dangoodin "When I contacted Oracle, a spokesperson at the PR… |
|
|
|
Post #AsgCYl8KmUNhDbr6yO by [email protected] |
|
0 likes, 0 repeats |
|
|
|
A class action lawsuit has been filed in the US around Oracle failing to public… |
|
|
|
Post #AsgCj5fRI78fncGaQa by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog are they not beholden to breach reporting requirements? |
|
|
|
Post #AsgD5fxF3bEciFMZXs by [email protected] |
|
0 likes, 0 repeats |
|
|
|
Meanwhile, on the Oracle cloud front, Oracle’s silence is deafening. |
|
|
|
Post #AsgDHvqnmVf7UMCA1Q by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog have they filed an 8K yet? Don't remember seeing one on the bo… |
|
|
|
Post #AsgDm34rTdFOac8Fdo by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog looks like @ZachWeinersmith had it backwards – if the security s… |
|
|
|
Post #AsgFFv7zhIDUZnPBKK by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@GossiTheDog *Narrator*: He did not stay out of this. 😜 |
|
|
|
Post #AsgVieZnueIkuK8UKm by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog ah thanks for that, they have a booth at kubecon and i’ll ask to… |
|
|
|
Post #Ashy94f2Xt8fD7vpC4 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
We have an update. Reuters and Bloomberg confirm my blog, that’s there’s a … |
|
|
|
Post #AshyRCL2jv0KEbDj4i by [email protected] |
|
0 likes, 1 repeats |
|
|
|
“The company informed customers that the system has not been in use for eight… |
|
|
|
Post #Asi0MeSuw7onvfraYi by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog oh to have the money to just... Not notice that you're paying … |
|
|
|
Post #Asi0oj17bh3Y9dFTRg by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@GossiTheDog Because of course no one would have 8 year old credentials that ar… |
|
|
|
Post #Asi0z0R1hdGv4RGelE by [email protected] |
|
0 likes, 0 repeats |
|
|
|
The Bloomberg article is paywall so here’s screenshots. |
|
|
|
Post #Asi30gxjGvIjAIUnXE by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@GossiTheDog @BleepingComputer bring back the CSRB, with Gossi as a member :) |
|
|
|
Post #Asi4kY051bToe21b5U by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog Archived version of the article:https://archive.is/clGxI |
|
|
|
Post #AsiHboE0dD3xlKhgP2 by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@GossiTheDog Legacy system my ass. Wonder if that's why some of my compani… |
|
|
|
Post #AsiI5ZnwoJ4pj4hw4O by [email protected] |
|
0 likes, 1 repeats |
|
|
|
Yeah, by legacy system Oracle mean ‘a system we manage housing active custome… |
|
|
|
Post #AsiIMu7wVNDtg6K4LQ by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog So, Oracle's defense is they left something online, publicly r… |
|
|
|
Post #AsiITluXS1cgDtKNay by [email protected] |
|
0 likes, 0 repeats |
|
|
|
Oracle were still trying to get SaaS solutions *they* manage off Oracle Classic… |
|
|
|
Post #AsiMVDONA5WHYpE4g4 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
To answer my own question up thread - from talking to people, the Oracle Health… |
|
|
|
Post #AsiNNzlVWlrxE0AVDk by [email protected] |
|
0 likes, 0 repeats |
|
|
|
Also in both cases Oracle hasn’t filed an 8-K or told regulators or provided … |
|
|
|
Post #AsiNVSLdejHbtqcsgC by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@GossiTheDog And they are going to buy TikTok, which clearly isn't a target… |
|
|
|
Post #AsiNd5hziFDK09iuh6 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog So "unbreakable" was referring to their silence in the f… |
|
|
|
Post #Asidy4ZiijE9plscoi by [email protected] |
|
0 likes, 0 repeats |
|
|
|
Bleeping Computer report that although Oracle are telling clients the login dat… |
|
|
|
Post #AsieCRJYyMigPgAnpo by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@GossiTheDog the XML config file in the screen shot is the oam-config.xml or a … |
|
|
|
Post #AsiecqWxqH7G9I27Um by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog Yes, the "old" line doesn't match up with what we kn… |
|
|
|
Post #Asif09MI0UAfCd9UyO by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog"used a 2020 Java exploit to deploy a web shell and additional… |
|
|
|
Post #Asifs0ppuemUPBek64 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog Yeah, the only written response I've gotten is the boilerplate… |
|
|
|
Post #AsivVV9IdfTJ1p31W4 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog I wonder if there's a way to do mail signature-style footers o… |
|
|
|
Post #AsizQnRbaclO8fcdEW by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog “legacy” is a codeword for “things which are still working f… |
|
|
|
Post #Asj5sGejgkNuHVFKim by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog they're sticking their findings in their ears, singing "l… |
|
|
|
Post #AsjOT5ze5rIx6Jjm1w by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@[email protected] still the best take. |
|
|
|
Post #Askpi96hgrfB1SOpfc by [email protected] |
|
0 likes, 1 repeats |
|
|
|
The Oracle cloud threat actor has told the BBC they plan to release European re… |
|
|
|
Post #Askq4JIaTjZl0CWix6 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog Granted, these days Oracle has the excuse that they are really usi… |
|
|
|
Post #Askt0s6vPGnZfp7jkG by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@GossiTheDog "No one see me again"? I wonder if he's really a Rus… |
|
|
|
Post #AskuRRgZrUyPUV2F9s by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog What happened to the whole "you must report incidents to affe… |
|
|
|
Post #AskxAQ8SfjvxceeR3Q by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog haha...ain't no one buying oracle's B.S. |
|
|
|
Post #Asl6HpQxuWnphNuhFY by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@GossiTheDog Coming to think about it, I am wrong. There is no shall/will in th… |
|
|
|
Post #Ass1qsc4wVx81vj2tU by [email protected] |
|
0 likes, 0 repeats |
|
|
|
The Register has a look at the Oracle situation. No new info, as Oracle won’t… |
|
|
|
Post #AssOjM4DqcqS0cGp5U by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog and #Oracle being the asshole corporation they are is only making … |
|
|
|
Post #Assd6uJM5sywEYTPuK by [email protected] |
|
0 likes, 1 repeats |
|
|
|
Oracle have finally issued to a written notification to customers about their c… |
|
|
|
Post #Assi5sCcwnlBAweWwK by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog |
|
|
|
Post #AssqyvDeEVp05itGK0 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog do you have the link, I can't find it! or it is just an email … |
|
|
|
Post #Asszv40oUwspn87dlQ by [email protected] |
|
0 likes, 0 repeats |
|
|
|
If anybody is struggling to find the Oracle security incident notification emai… |
|
|
|
Post #Ast1NQ3gDxmqEGY1z6 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog Oh yeah, the famous "encrypted password". How do you che… |
|
|
|
Post #Ast6ibab2zSxqMrkUC by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@ljrk @GossiTheDog Isn't Microsoft with NTLMv2 still storing passwords? It … |
|
|
|
Post #Ast6ibiOZzhkEYVyds by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@waldi @GossiTheDog Absolutely, NTLMv1 and v2 are both utter garbage and it is … |
|
|
|
Post #Ast6lLEqIP4m07zmBE by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog I mean... Their entire corporate culture very much just has the &q… |
|
|
|
Post #AstEBtnB9CpSNNfNzM by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog Oracle having a normal Oracle time of it, I see. |
|
|
|
Post #AstRSsGTNXpTxvnFYW by [email protected] |
|
0 likes, 0 repeats |
|
|
|
Watch Oracle PR their way out of their responsibilities.. they’ve managed to… |
|
|
|
Post #AstSYzpEHVrd6dX8Wu by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog all I have is a lovely reminder about some info on creating a disa… |
|
|
|
Post #Asv07JHzudGexov3rc by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog relevant meme from the office meme wall |
|
|
|
Post #Asv14Qzeuas5wYXBFQ by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog We did NOT "run over" a customer with a truck. It has wh… |
|
|
|
Post #AswbIIg8PjvfiXGywq by [email protected] |
|
0 likes, 0 repeats |
|
|
|
A Senator has written to President Trump raising concern about Oracle’s invol… |
|
|
|
Post #AswcTB4p7MC7HRZUga by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog if they were that concerned about security then they wouldn't … |
|
|
|
Post #AtB0pTqN8oruy7Q15c by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog https://www.cisa.gov/news-events/alerts/2025/04/16/cisa-releases-g… |
|
|
|
Post #AtB1JpxtSX8WGRPb6G by [email protected] |
|
0 likes, 0 repeats |
|
|
|
CISA Releases Guidance on Credential Risks Associated with Potential Legacy Ora… |
|
|
|
Post #AtB25zMZovW1JOuxUm by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog CISA, as in the folks that The Powers That Be would rather fuck of… |
|
|
|
Post #AtBKBJfrWvhKvcd1d2 by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@GossiTheDogWill be interesting to see if this continues |
|
|
|
Post #AvShylz8kjrJ9mXxzs by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog , login.us2.oraclecloud was still being used well in to 2024. |
|
|
|
Post #AvSiXjNASRfjBpSFns by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@GossiTheDog , 'Cerner.com' subdomains were compromised. More than 1500… |
