TECH NEWS

Insurance Regulators Group NAIC Hit in Oracle PeopleSoft Hack

The National Association of Insurance Commissioners (NAIC) has confirmed it was targeted in the recent hacking campaign that exploited an Oracle PeopleSoft zero-day vulnerability.

The PeopleSoft zero-day attacks came to light on June 11, when Oracle published an out-of-band advisory for a vulnerability tracked as CVE-2026-35273, which allows unauthenticated remote code execution.

The company did not mention in-the-wild exploitation in its public advisory, but Google and others confirmed seeing attacks.

The ShinyHunters cybercrime group appears to be behind the campaign, claiming to have targeted many organizations to steal their data.

The US state insurance regulatory body NAIC has come forward to say that it was targeted in the campaign.

NAIC is run by state insurance regulators and coordinates policy, develops model laws, and supports oversight across all 50 states.

Advertisement. Scroll to continue reading.

In a security incident noticeposted on its website on June 26, NAIC said it learned...

Copyright of this story solely belongs to securityweek.com. To see the full text click HERE

Insurance Regulators Group NAIC Hit in Oracle PeopleSoft Hack

Read more

How to future-proof enterprise operations in the age of invisible AI

How to watch Brazil vs Japan: Free Streams, TV Channels & Kick-Off time for FIFA World Cup 2026 as Vinicius Jr…

'This is a step in the right direction': Oracle set to open up MySQL - but will it be everything developers…

Samsung doubles down on 1000-layer NAND for petabyte SSDs as it sets its sights on elusive 32TB M.2 solid state drives…