Harvard University alleged Oracle EBS data leak
Data Leak
Summary
Hide ▲
Show ▼
A data leak claim involving Harvard University emerged when attackers made available over 1.3 TB of archive files allegedly containing Harvard data. The publication is still unverified, but it raises the risk that sensitive information from the Oracle EBS environment may have been exposed. Harvard says the impact appears limited to a small administrative unit and that the relevant vulnerability has been patched.
Related Happenings
ShinyHunters Oracle PeopleSoft data theft and extortion campaign
Campaign
H score60
First: 10.06.2026 21:31
Last: 10.06.2026 21:31
Sources 1
About this happening:
**ShinyHunters**/**UNC6240** used **CVE-2026-35273** in **Oracle PeopleSoft Enterprise PeopleTools** as a **zero-day** to break into exposed systems, steal data, and extort victim...
ShinyHunters Oracle PeopleSoft data theft and extortion campaign
CampaignAbout this happening: **ShinyHunters**/**UNC6240** used **CVE-2026-35273** in **Oracle PeopleSoft Enterprise PeopleTools** as a **zero-day** to break into exposed systems, steal data, and extort victim...
Latest development: 29.06.2026 23:40
Nissan says attackers exploited an Oracle PeopleSoft vulnerability in a ShinyHunters-linked campaign and that the company was specifically targeted, with personal information for current and former employees in the United States, Canada, Mexico, and Brazil potentially exposed. Nissan says the material may include employee contact information, banking information, Social Security numbers, Social Insurance Numbers, National Identification Numbers, financial and tax information, and dependent and beneficiary information, and the company has activated incident response, engaged external cybersecurity experts, secured affected systems, and is working with Oracle.
BlackFile victims' Salesforce and SharePoint data leak
Data Leak
H score35
First: 24.04.2026 21:26
Last: 24.04.2026 21:26
Sources 1
About this happening:
BlackFile's **stolen documents** were published on a **dark web leak site**, exposing employee and business records taken from **Salesforce** and **SharePoint** environments. The...
BlackFile victims' Salesforce and SharePoint data leak
Data LeakAbout this happening: BlackFile's **stolen documents** were published on a **dark web leak site**, exposing employee and business records taken from **Salesforce** and **SharePoint** environments. The...
Madison Square Garden hit by network compromise linked to Cl0p
Incident
H score38
First: 02.03.2026 15:53
Last: 02.03.2026 15:53
Sources 1
About this happening:
**Madison Square Garden** confirmed a **data breach** that exposed **names and SSNs**, and it has started notifying affected people. The compromise involved a **hosted Oracle E-Bu...
Madison Square Garden hit by network compromise linked to Cl0p
IncidentAbout this happening: **Madison Square Garden** confirmed a **data breach** that exposed **names and SSNs**, and it has started notifying affected people. The compromise involved a **hosted Oracle E-Bu...
ShellForce-affiliated leak site publishes stolen identity, corporate, and résumé records
Data Leak
H score29
First: 09.02.2026 23:14
Last: 09.02.2026 23:14
Sources 1
About this happening:
A **ShellForce**-affiliated leak site is publicly posting **stolen identity records**, **corporate data**, and **résumé databases**, turning intrusions into immediate exposure ris...
ShellForce-affiliated leak site publishes stolen identity, corporate, and résumé records
Data LeakAbout this happening: A **ShellForce**-affiliated leak site is publicly posting **stolen identity records**, **corporate data**, and **résumé databases**, turning intrusions into immediate exposure ris...
Monroe University stolen-data breach affecting 320,973 people
Data Leak
H score56
First: 14.01.2026 10:57
Last: 14.01.2026 10:57
Sources 1
About this happening:
The **Monroe University data leak** now has a confirmed scope of **320,973 affected individuals**, raising the risk of identity theft and account abuse. Attackers accessed the uni...
Monroe University stolen-data breach affecting 320,973 people
Data LeakAbout this happening: The **Monroe University data leak** now has a confirmed scope of **320,973 affected individuals**, raising the risk of identity theft and account abuse. Attackers accessed the uni...
Timeline
-
14.10.2025 15:47 2 articles · 8mo ago
Harvard appears on Cl0p leak site
Initial DisclosureCl0p-linked operators listed Harvard University on a data leak site on October 12 and later published a link to archive files allegedly stolen from Harvard, with more than 1.3 TB of archive files made available.
Show sources
- Harvard Is First Confirmed Victim of Oracle EBS Zero-Day Hack — www.securityweek.com — 14.10.2025 15:47
- Harvard Is First Confirmed Victim of Oracle EBS Zero-Day Hack — www.securityweek.com — 14.10.2025 15:47
-
14.10.2025 15:47 1 articles · 8mo ago
Harvard confirms targeted Oracle EBS impact
Victim Impact UpdateHarvard University confirmed being targeted in the Oracle EBS campaign, said the exploited vulnerability has been patched, and said the incident appears to affect a limited number of parties associated with a small administrative unit. Harvard University also said there is no evidence of other systems being compromised.
Show sources
- Harvard Is First Confirmed Victim of Oracle EBS Zero-Day Hack — www.securityweek.com — 14.10.2025 15:47