Find notable cyber news and cases, enriched with sources, timelines, and signals.
Home Watchlists Beta Browse News Feed Stats About Contact

Nissan hit by network compromise

Incident
First reported
Last updated
Happening score
H score 38
1 unique sources, 1 articles

Summary

Hide ▲

Nissan disclosed a data breach affecting current and former employees after unauthorized access tied to Oracle PeopleSoft exploitation put personnel records at risk. The exposed information may include contact details, banking information, Social Security numbers, Social Insurance Numbers, National Identification Numbers, and financial and tax data across the United States, Canada, Mexico, and Brazil. Nissan has activated incident response, engaged outside cybersecurity help, and is tightening access controls while the investigation continues.

Related Happenings

Oracle PeopleSoft PeopleTools zero-day RCE (CVE-2026-35273)

Vulnerability
H score58 First: 11.06.2026 22:39 Last: 11.06.2026 22:39 Sources 1

How related: While Oracle has still not publicly confirmed that the flaw was exploited, Mandiant later confirmed that threat actors exploited the Oracle PeopleSoft CVE-2026-35273 vulnerability as a zero-day in data theft attacks between May 27 and June 9.

About this happening: **Oracle PeopleSoft PeopleTools CVE-2026-35273** is a critical **zero-day RCE** affecting **PeopleSoft Enterprise PeopleTools 8.61 and 8.62**. Oracle released **emergency mitigati...

Latest development: 29.06.2026 23:40

Nissan says it suffered a data breach affecting current and former employees after attackers exploited an Oracle PeopleSoft zero-day associated with CVE-2026-35273. Oracle informed Nissan that personnel records of hundreds of companies may have been obtained and that Nissan was specifically targeted, with potentially exposed data including contact details, banking information, Social Security numbers, Social Insurance Numbers, National Identification Numbers, financial and tax information, and dependent and beneficiary data for employees in the United States, Canada, Mexico, and Brazil.

Open Happening

ShinyHunters Oracle PeopleSoft data theft and extortion campaign

Campaign
H score60 First: 10.06.2026 21:31 Last: 10.06.2026 21:31 Sources 1

How related: The ShinyHunters extortion gang claimed responsibility for the attacks, telling BleepingComputer that over 300 PeopleSoft instances across 100 organizations were breached.

About this happening: **ShinyHunters**/**UNC6240** used **CVE-2026-35273** in **Oracle PeopleSoft Enterprise PeopleTools** as a **zero-day** to break into exposed systems, steal data, and extort victim...

Latest development: 29.06.2026 23:40

Nissan says attackers exploited an Oracle PeopleSoft vulnerability in a ShinyHunters-linked campaign and that the company was specifically targeted, with personal information for current and former employees in the United States, Canada, Mexico, and Brazil potentially exposed. Nissan says the material may include employee contact information, banking information, Social Security numbers, Social Insurance Numbers, National Identification Numbers, financial and tax information, and dependent and beneficiary information, and the company has activated incident response, engaged external cybersecurity experts, secured affected systems, and is working with Oracle.

Open Happening

Mazda Motor Corporation hit by cyberattack

Incident
H score21 First: 24.03.2026 00:12 Last: 24.03.2026 00:12 Sources 1

About this happening: **Mazda Motor Corporation** disclosed a **security breach** that exposed employee and business partner information after **unauthorized external access** to a warehouse-management...

Open Happening

Nissan Fukuoka Sales Co., Ltd. customer data leak via Red Hat breach

Data Leak
H score32 First: 22.12.2025 23:32 Last: 22.12.2025 23:32 Sources 1

About this happening: **Nissan** confirmed that **customer information** from **Nissan Fukuoka Sales Co., Ltd.** was exposed through the **Red Hat** breach, affecting about **21,000 customers**. The le...

Open Happening

Timeline

  1. 29.06.2026 23:40 1 articles · 2h ago

    Oracle PeopleSoft CVE-2026-35273 zero-day exploitation hits multiple organizations

    Technical Analysis Update

    Mandiant confirmed that threat actors exploited Oracle PeopleSoft CVE-2026-35273 as a zero-day in data theft attacks, with the confirmed activity window running from May 27 to June 9, 2026 and more than 100 organizations notified.

    Show sources
    Open in new tab
  2. 29.06.2026 23:40 2 articles · 2h ago

    Nissan discloses employee data breach tied to Oracle PeopleSoft

    Initial Disclosure

    Nissan warned that current and former employee records were exposed after Oracle said the broader data theft campaign impacted hundreds of companies and that Nissan was specifically targeted; the affected population is believed to include employees in the United States, Canada, Mexico, and Brazil, with contact, banking, tax, and identification data potentially affected.

    Show sources
    Open in new tab
  3. 29.06.2026 23:40 1 articles · 2h ago

    Nissan restricts payroll access after employee data breach

    Mitigation Patch Update

    Nissan activated incident response, engaged external cybersecurity experts, secured affected systems, ended unauthorized access, and restricted employee pay slips and direct deposit changes to company network computers or secured VPN connections while adding extra identity verification before payroll requests.

    Show sources
    Open in new tab