BleepingComputer ·EN-US News source
Nissan discloses employee data breach linked to Oracle zero-day attacks
CVE Tools coverage
Nissan says attackers exploited an Oracle PeopleSoft vulnerability to steal employee information, and the incident may have affected current and former staff. The breach has been connected to exploitation of Oracle PeopleTools zero-day CVE-2026-35273, a flaw that was used in data-theft operations previously attributed to the ShinyHunters extortion group. This matters because exposed payroll and identity data can enable further fraud and long-term account and tax-related abuse.